Description
All versions of package comb are vulnerable to Prototype Pollution via the deepMerge() function.
Remediation
References
https://snyk.io/vuln/SNYK-JS-COMB-1730083
Related Vulnerabilities
CVE-2016-4055 Vulnerability in maven package org.webjars.npm:moment
CVE-2023-35165 Vulnerability in npm package aws-cdk-lib
CVE-2021-23354 Vulnerability in npm package printf
CVE-2022-24373 Vulnerability in npm package react-native-reanimated
CVE-2020-28502 Vulnerability in maven package org.webjars.npm:xmlhttprequest-ssl