Description
safer-eval before 1.3.4 are vulnerable to Arbitrary Code Execution. A payload using constructor properties can escape the sandbox and execute arbitrary code.
Remediation
References
https://snyk.io/vuln/SNYK-JS-SAFEREVAL-173772
Related Vulnerabilities
CVE-2021-32854 Vulnerability in npm package textangular
CVE-2020-13956 Vulnerability in maven package org.apache.httpcomponents.client5:httpclient5
CVE-2021-23448 Vulnerability in npm package config-handler
CVE-2018-3750 Vulnerability in npm package deep-extend
CVE-2020-13942 Vulnerability in maven package org.apache.unomi:unomi-kar