Every CVE whose affected-product data names Mpath Project Mpath, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2018-16490 — CVSS 7.5 (high): A prototype pollution vulnerability was found in module mpath <0.5.1 that allows an attacker to inject arbitrary properties onto…
CVE-2021-23438 — CVSS 5.6 (medium): This affects the package mpath before 0.8.4. A type confusion vulnerability can lead to a bypass of CVE-2018-16490. In particular, the…