MidnightBSD

Advisories for flatnest_project

CVE-2023-26135

All versions of the package flatnest are vulnerable to Prototype Pollution via the nest() function in the flatnest/nest.js file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
report@snyk.io 7.3 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 3.9 3.4

Products Affected

Vendor Product Version
flatnest_project flatnest *