CVE-2021-23329

Summary

The package nested-object-assign before 1.0.4 are vulnerable to Prototype Pollution via the default function, as demonstrated by running the PoC below.

Affected Software

VendorProductVersion RangeStatus
n/anested-object-assignunspecified < 1.0.4affected

Weaknesses

  • Prototype Pollution

ADP Enrichment

CVE Program Container

Additional References

References