GHSA-9m6g-wc8r-q59c

Critical

GHSA-9m6g-wc8r-q59c

(CVE-2026-48170)

Published Jun 22, 2026

CVSS

9.1

CRITICAL

EPSS

Exploit Prediction Scoring System — the modeled probability of in-the-wild exploitation in the next 30 days.

—

Affected packages

Summary

scimPatch vulnerable to prototype pollution via unfiltered keys in patch

Developer impact

Recommended action

Affected packages

Sources