diff --git a/be/package-lock.json b/be/package-lock.json
index 4823331..7849221 100644
--- a/be/package-lock.json
+++ b/be/package-lock.json
@@ -4790,9 +4790,9 @@
       }
     },
     "lodash": {
-      "version": "4.17.19",
-      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.19.tgz",
-      "integrity": "sha512-JNvd8XER9GQX0v2qJgsaN/mzFCNA5BRe/j8JN9d+tWyGLSodKQHKFicdwNYzWwI3wjRnaKPsGj1XkBjx/F96DQ=="
+      "version": "4.17.21",
+      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.21.tgz",
+      "integrity": "sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg=="
     },
     "lodash.foreach": {
       "version": "4.5.0",
diff --git a/be/package.json b/be/package.json
index ebc60ea..d1ac4c8 100644
--- a/be/package.json
+++ b/be/package.json
@@ -11,7 +11,7 @@
     "express-async-errors": "^3.1.1",
     "jest": "^26.1.0",
     "jsonwebtoken": "^8.5.1",
-    "lodash": "^4.17.19",
+    "lodash": "^4.17.21",
     "mongoose": "^5.9.25",
     "mongoose-unique-validator": "^2.0.3",
     "nodemon": "^2.0.4"