CVE-2021-44906

Vulnerable Component Details
Type Namespace Name Version Package URL
npm None minimist 1.2.5 pkg:npm/minimist@1.2.5
Vulnerability Details
ID CVE-2021-44906
Featured Link https://snyk.io/vuln/SNYK-JS-MINIMIST-559764
Description Minimist <=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).
Recommendation . || State: fixed | Fix Versions: 1.2.6. || Upgrade to version 1.2.6 or above.
Ratings
Severity Score Method Vector Source
7.5 CVSSv2 AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 CVSSv3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Related Vulnerabilities
Found By Gitlab Gemnasium , Anchore Grype , Sonotype OSS-Index
References / Advisories
Weakness Enumeration