Every CVE whose affected-product data names Linuxfoundation Dojo, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2020-5258 — CVSS 7.7 (high): In affected versions of dojo (NPM package), the deepCopy method is vulnerable to Prototype Pollution. Prototype Pollution refers to the…
CVE-2021-23450 — CVSS 7.5 (high): All versions of package dojo are vulnerable to Prototype Pollution via the setObject function.