The package mathjs before 7.5.1 are vulnerable to Prototype Pollution via the deepExtend function that runs upon configuration updates.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: snyk
Published: 2020-10-13T09:15:16.908892Z
Updated: 2024-09-16T19:31:25.554Z
Reserved: 2020-01-21T00:00:00
Link: CVE-2020-7743
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-10-13T10:15:13.440
Modified: 2024-11-21T05:37:43.127
Link: CVE-2020-7743
Redhat