minimist — CVE history (npm)
minimist
1 CVEs affect the minimist npm package (highest CVSS 5.6). Latest disclosed: 2020-03-11. Full CVE history sourced from NVD.
Summary
- Package
minimist(npm)- Total CVEs
1- Actively exploited (CISA KEV)
- 0
- Highest CVSS
5.6- Latest disclosed
- 2020-03-11
Recent CVEs (top 1)
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2020-7598 | Medium | 5.6 | — | 2020-03-11 | minimist before 1.2.2 could be tricked into adding or modifying properties of Object.prototype using a "constructor" or "__proto__" payload. |
All-time worst (top 1 by CVSS)
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2020-7598 | Medium | 5.6 | — | 2020-03-11 | minimist before 1.2.2 could be tricked into adding or modifying properties of Object.prototype using a "constructor" or "__proto__" payload. |