[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2020-7598":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":93,"aliases":103,"duplicate_of":9,"upstream":105,"downstream":106,"duplicates":147,"related":148,"reserved_at":9,"published_at":157,"modified_at":158,"state":159,"summary":160,"references_raw":168,"kevs":216,"epss":217,"epss_history":220,"metrics":483,"affected":495},"CVE-2020-7598","minimist before 1.2.2 could be tricked into adding or modifying properties of Object.prototype using a \"constructor\" or \"__proto__\" payload.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-1321","Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')","The product receives input from an upstream component that specifies attributes that are to be initialized or updated in an object, but it does not properly control modifications of attributes of the object prototype.","weakness","Incomplete","Variant",[19,67,89],{"id":20,"name":21,"techniques":22},"CAPEC-1","Accessing Functionality Not Properly Constrained by ACLs",[23],{"id":24,"name":25,"tactics":26,"countermeasures":42},"T1574.010","Services File Permissions Weakness",[27,30,33,36,39],{"id":28,"name":29},"TA0110","Persistence",{"id":31,"name":32},"TA0111","Privilege Escalation",{"id":34,"name":35},"TA0030","Defense Evasion",{"id":37,"name":38},"TA0005","Stealth",{"id":40,"name":41},"TA0104","Execution",[43,48,52,57,62],{"id":44,"name":45,"tactic":46},"D3-SWI","Software Inventory",{"name":47},"Model",{"id":49,"name":50,"tactic":51},"D3-AVE","Asset Vulnerability Enumeration",{"name":47},{"id":53,"name":54,"tactic":55},"D3-SBV","Service Binary Verification",{"name":56},"Detect",{"id":58,"name":59,"tactic":60},"D3-SU","Software Update",{"name":61},"Harden",{"id":63,"name":64,"tactic":65},"D3-RS","Restore Software",{"name":66},"Restore",{"id":68,"name":69,"techniques":70},"CAPEC-180","Exploiting Incorrectly Configured Access Control Security Levels",[71],{"id":24,"name":25,"tactics":72,"countermeasures":78},[73,74,75,76,77],{"id":28,"name":29},{"id":31,"name":32},{"id":34,"name":35},{"id":37,"name":38},{"id":40,"name":41},[79,81,83,85,87],{"id":44,"name":45,"tactic":80},{"name":47},{"id":49,"name":50,"tactic":82},{"name":47},{"id":53,"name":54,"tactic":84},{"name":56},{"id":58,"name":59,"tactic":86},{"name":61},{"id":63,"name":64,"tactic":88},{"name":66},{"id":90,"name":91,"techniques":92},"CAPEC-77","Manipulating User-Controlled Variables",[],[94],{"_key":95,"name":96,"source":97,"url":98,"maturity":99,"reliability_score":100,"verified":101,"type":9,"platforms":102,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_9633CE21A4F715BC","Exploit Reference (snyk.io)","reference","https://snyk.io/vuln/SNYK-JS-MINIMIST-559764","unknown",0.2,false,[],[104],"GHSA-vh95-rmgr-6w4m",[],[107,109,111,113,115,117,119,121,123,125,127,129,131,133,135,137,139,141,143,145],{"_key":108},"SUSE-SU-2020:1568-1",{"_key":110},"UBUNTU-CVE-2020-7598",{"_key":112},"SUSE-RU-2020:1238-1",{"_key":114},"SUSE-SU-2020:1575-1",{"_key":116},"SUSE-SU-2020:1576-1",{"_key":118},"SUSE-SU-2020:1606-1",{"_key":120},"SUSE-SU-2020:1623-1",{"_key":122},"SUSE-SU-2020:2800-1",{"_key":124},"OPENSUSE-SU-2020:0802-1",{"_key":126},"RHSA-2020:2847",{"_key":128},"RHSA-2020:2848",{"_key":130},"RHSA-2020:2849",{"_key":132},"RHSA-2020:2852",{"_key":134},"RHSA-2020:2895",{"_key":136},"RHSA-2020:2992",{"_key":138},"RHSA-2020:3042",{"_key":140},"RHSA-2020:3084",{"_key":142},"DEBIAN-CVE-2020-7598",{"_key":144},"RHSA-2020:2362",{"_key":146},"RHSA-2020:3247",[],[149,150,151,152,153,154,155,156],{"_key":108},{"_key":112},{"_key":114},{"_key":116},{"_key":118},{"_key":120},{"_key":122},{"_key":124},"2020-03-11T21:40:09.000Z","2024-08-04T09:33:19.947Z","Modified",{"cisa_kev":101,"cisa_ransomware":101,"cisa_vendor":9,"epss_severity":161,"epss_score":162,"severity":163,"severity_score":164,"severity_version":165,"severity_source":166,"severity_vector":167,"severity_status":159},"low",0.00189,"medium",6.8,"v2.0","nvd","AV:N/AC:M/Au:N/C:P/I:P/A:P",[169,179,186,191,195,199,203,207,212],{"url":98,"sources":170,"tags":173},[171,166,172],"cve.org","osv_npm",[174,175,176,177,178],"X Refsource MISC","Exploit","Patch","Third Party Advisory","WEB",{"url":180,"sources":181,"tags":182},"http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00024.html",[171,166,172],[183,184,185,177,178],"Vendor Advisory","X Refsource SUSE","Mailing List",{"url":187,"sources":188,"tags":189},"https://nvd.nist.gov/vuln/detail/CVE-2020-7598",[172],[190],"Advisory",{"url":192,"sources":193,"tags":194},"https://github.com/minimistjs/minimist/commit/10bd4cdf49d9686d48214be9d579a9cdfda37c68",[172],[178],{"url":196,"sources":197,"tags":198},"https://github.com/minimistjs/minimist/commit/38a4d1caead72ef99e824bb420a2528eec03d9ab",[172],[178],{"url":200,"sources":201,"tags":202},"https://github.com/minimistjs/minimist/commit/4cf1354839cb972e38496d35e12f806eea92c11f#diff-a1e0ee62c91705696ddb71aa30ad4f95",[172],[178],{"url":204,"sources":205,"tags":206},"https://github.com/minimistjs/minimist/commit/63e7ed05aa4b1889ec2f3b196426db4500cbda94",[172],[178],{"url":208,"sources":209,"tags":210},"https://github.com/substack/minimist",[172],[211],"PACKAGE",{"url":213,"sources":214,"tags":215},"https://www.npmjs.com/advisories/1179",[172],[178],[],{"date":218,"score":162,"percentile":219},"2026-06-04",0.40546,[221,225,228,231,234,236,239,242,245,248,251,254,257,260,263,267,270,273,276,279,282,285,288,291,294,297,300,303,307,310,313,316,319,322,325,328,331,333,335,338,341,344,346,349,352,355,358,361,364,367,370,373,376,379,382,384,387,390,392,395,398,401,404,407,410,413,416,419,422,424,427,430,433,436,438,441,444,447,450,452,455,458,461,463,466,469,472,474,477,480],{"date":222,"score":223,"percentile":224},"2025-11-04",0.00253,0.48463,{"date":226,"score":223,"percentile":227},"2025-11-05",0.48443,{"date":229,"score":223,"percentile":230},"2025-11-06",0.48455,{"date":232,"score":223,"percentile":233},"2025-11-07",0.48484,{"date":235,"score":223,"percentile":233},"2025-11-08",{"date":237,"score":223,"percentile":238},"2025-11-09",0.48466,{"date":240,"score":223,"percentile":241},"2025-11-10",0.4844,{"date":243,"score":223,"percentile":244},"2025-11-11",0.48453,{"date":246,"score":223,"percentile":247},"2025-11-12",0.48479,{"date":249,"score":223,"percentile":250},"2025-11-13",0.48483,{"date":252,"score":223,"percentile":253},"2025-11-14",0.48496,{"date":255,"score":223,"percentile":256},"2025-11-15",0.4849,{"date":258,"score":223,"percentile":259},"2025-11-16",0.48476,{"date":261,"score":223,"percentile":262},"2025-11-17",0.4845,{"date":264,"score":265,"percentile":266},"2025-11-18",0.00276,0.479,{"date":268,"score":265,"percentile":269},"2025-11-19",0.47915,{"date":271,"score":265,"percentile":272},"2025-11-20",0.47897,{"date":274,"score":223,"percentile":275},"2025-11-21",0.48441,{"date":277,"score":223,"percentile":278},"2025-11-22",0.48438,{"date":280,"score":223,"percentile":281},"2025-11-23",0.48405,{"date":283,"score":223,"percentile":284},"2025-11-24",0.4839,{"date":286,"score":223,"percentile":287},"2025-11-25",0.48392,{"date":289,"score":223,"percentile":290},"2025-11-26",0.48391,{"date":292,"score":223,"percentile":293},"2025-11-27",0.48396,{"date":295,"score":223,"percentile":296},"2025-11-28",0.48366,{"date":298,"score":223,"percentile":299},"2025-11-29",0.48348,{"date":301,"score":223,"percentile":302},"2025-11-30",0.48335,{"date":304,"score":305,"percentile":306},"2025-12-01",0.00155,0.36848,{"date":308,"score":305,"percentile":309},"2025-12-02",0.36855,{"date":311,"score":305,"percentile":312},"2025-12-03",0.36854,{"date":314,"score":223,"percentile":315},"2025-12-04",0.48334,{"date":317,"score":223,"percentile":318},"2025-12-05",0.48354,{"date":320,"score":223,"percentile":321},"2025-12-06",0.48356,{"date":323,"score":223,"percentile":324},"2025-12-07",0.48342,{"date":326,"score":223,"percentile":327},"2025-12-08",0.48346,{"date":329,"score":223,"percentile":330},"2025-12-09",0.48375,{"date":332,"score":223,"percentile":278},"2025-12-10",{"date":334,"score":223,"percentile":230},"2025-12-11",{"date":336,"score":223,"percentile":337},"2025-12-12",0.4848,{"date":339,"score":223,"percentile":340},"2025-12-13",0.48465,{"date":342,"score":223,"percentile":343},"2025-12-14",0.48454,{"date":345,"score":223,"percentile":278},"2025-12-15",{"date":347,"score":223,"percentile":348},"2025-12-16",0.48451,{"date":350,"score":223,"percentile":351},"2025-12-17",0.48473,{"date":353,"score":223,"percentile":354},"2025-12-18",0.48513,{"date":356,"score":223,"percentile":357},"2025-12-19",0.48517,{"date":359,"score":223,"percentile":360},"2025-12-20",0.48494,{"date":362,"score":223,"percentile":363},"2025-12-21",0.48469,{"date":365,"score":223,"percentile":366},"2025-12-22",0.48448,{"date":368,"score":223,"percentile":369},"2025-12-23",0.48445,{"date":371,"score":223,"percentile":372},"2025-12-24",0.48456,{"date":374,"score":223,"percentile":375},"2025-12-25",0.48508,{"date":377,"score":223,"percentile":378},"2025-12-26",0.48497,{"date":380,"score":223,"percentile":381},"2025-12-27",0.48519,{"date":383,"score":223,"percentile":278},"2025-12-28",{"date":385,"score":223,"percentile":386},"2025-12-29",0.48419,{"date":388,"score":223,"percentile":389},"2025-12-30",0.48415,{"date":391,"score":223,"percentile":230},"2025-12-31",{"date":393,"score":305,"percentile":394},"2026-01-01",0.36994,{"date":396,"score":305,"percentile":397},"2026-01-02",0.36967,{"date":399,"score":305,"percentile":400},"2026-01-03",0.36955,{"date":402,"score":223,"percentile":403},"2026-01-04",0.48413,{"date":405,"score":223,"percentile":406},"2026-01-05",0.48397,{"date":408,"score":223,"percentile":409},"2026-01-06",0.48403,{"date":411,"score":223,"percentile":412},"2026-01-07",0.48421,{"date":414,"score":223,"percentile":415},"2026-01-08",0.48444,{"date":417,"score":223,"percentile":418},"2026-01-09",0.48417,{"date":420,"score":223,"percentile":421},"2026-01-10",0.4841,{"date":423,"score":223,"percentile":284},"2026-01-11",{"date":425,"score":223,"percentile":426},"2026-01-12",0.48349,{"date":428,"score":223,"percentile":429},"2026-01-13",0.48322,{"date":431,"score":223,"percentile":432},"2026-01-14",0.4837,{"date":434,"score":223,"percentile":435},"2026-01-15",0.48369,{"date":437,"score":223,"percentile":287},"2026-01-16",{"date":439,"score":223,"percentile":440},"2026-01-17",0.48368,{"date":442,"score":223,"percentile":443},"2026-01-18",0.4834,{"date":445,"score":223,"percentile":446},"2026-01-19",0.48315,{"date":448,"score":223,"percentile":449},"2026-01-20",0.48312,{"date":451,"score":223,"percentile":449},"2026-01-21",{"date":453,"score":223,"percentile":454},"2026-01-22",0.48316,{"date":456,"score":223,"percentile":457},"2026-01-23",0.48361,{"date":459,"score":223,"percentile":460},"2026-01-24",0.48365,{"date":462,"score":223,"percentile":446},"2026-01-25",{"date":464,"score":223,"percentile":465},"2026-01-26",0.48285,{"date":467,"score":223,"percentile":468},"2026-01-27",0.48291,{"date":470,"score":223,"percentile":471},"2026-01-28",0.48301,{"date":473,"score":223,"percentile":468},"2026-01-29",{"date":475,"score":223,"percentile":476},"2026-01-30",0.483,{"date":478,"score":223,"percentile":479},"2026-01-31",0.48307,{"date":481,"score":305,"percentile":482},"2026-02-01",0.36611,[484,493],{"source":166,"cvss_v2_0":485,"cvss_v3_0":9,"cvss_v3_1":488,"cvss_v4_0":9},{"baseScore":164,"baseSeverity":9,"vectorString":167,"impactScore":486,"exploitabilityScore":487},6.4,8.6,{"baseScore":489,"baseSeverity":490,"vectorString":491,"impactScore":492,"exploitabilityScore":489},5.6,"MEDIUM","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",5.7,{"source":172,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":494,"cvss_v4_0":9},{"baseScore":489,"baseSeverity":9,"vectorString":491,"impactScore":492,"exploitabilityScore":489},[496,512,520],{"ecosystem":497,"name":498,"vendor":497,"product":498,"cpe_part":9,"purl_type":499,"purl_namespace":9,"purl_name":498,"source":9,"versions":500},"Npm","minimist","npm",[501,507],{"version":502,"is_range":503,"range_type":504,"version_start":9,"version_start_type":9,"version_end":505,"version_end_type":506,"fixed_in":9},"lt0_2_1",true,"semver","0.2.1","excluding",{"version":508,"is_range":503,"range_type":504,"version_start":509,"version_start_type":510,"version_end":511,"version_end_type":506,"fixed_in":9},"gte1_0_0_lt1_2_3","1.0.0","including","1.2.3",{"ecosystem":9,"name":513,"vendor":514,"product":513,"cpe_part":515,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":516},"leap","opensuse","o",[517],{"version":518,"is_range":101,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.1","cpe",{"ecosystem":9,"name":498,"vendor":521,"product":498,"cpe_part":522,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":523},"substack","a",[524],{"version":525,"is_range":503,"range_type":519,"version_start":9,"version_start_type":9,"version_end":526,"version_end_type":506,"fixed_in":9},"lt1.2.2","1.2.2"]