Description
All versions of the package utilities are vulnerable to Prototype Pollution via the _mix function.
Remediation
References
https://github.com/mde/utilities/issues/29
https://security.snyk.io/vuln/SNYK-JS-UTILITIES-3184491
Related Vulnerabilities
CVE-2023-34466 Vulnerability in maven package org.xwiki.platform:xwiki-platform-tag-api
CVE-2021-30074 Vulnerability in npm package docsify
CVE-2021-23771 Vulnerability in npm package argencoders-notevil
CVE-2020-28277 Vulnerability in maven package org.webjars.npm:dset
CVE-2020-7789 Vulnerability in maven package org.webjars.npm:node-notifier