Object-path Project Object-path — known CVE vulnerabilities
Every CVE whose affected-product data names Object-path Project Object-path, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-15256 — CVSS 7.7 (high): A prototype pollution vulnerability has been found in `object-path` <= 0.11.4 affecting the `set()` method. The vulnerability is limited to…
CVE-2021-3805 — CVSS 7.5 (high): object-path is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
CVE-2021-23434 — CVSS 5.6 (medium): This affects the package object-path before 0.11.6. A type confusion vulnerability can lead to a bypass of CVE-2020-15256 when the path…