CVE-2020-7748

Summary

This affects the package @tsed/core before 5.65.7. This vulnerability relates to the deepExtend function which is used as part of the utils directory. Depending on if user input is provided, an attacker can overwrite and pollute the object prototype of a program.

Affected Software

VendorProductVersion RangeStatus
n/a@tsed/coreunspecified < 5.65.7affected

Weaknesses

  • Prototype Pollution

ADP Enrichment

CVE Program Container

Additional References

References