0.003 Low
EPSS
Percentile
68.7%
mathjs is vulnerable to prototype pollution. An attacker is able to inject properties into existing construct prototypes and modify attributes such as __proto__, constructor and prototype.
__proto__
constructor
prototype
github.com/josdejong/mathjs/blob/develop/src/utils/object.js%23L82
github.com/josdejong/mathjs/commit/ecb80514e80bce4e6ec7e71db8ff79954f07c57e