Description
All versions of the package utilities are vulnerable to Prototype Pollution via the _mix function.
Remediation
References
https://github.com/mde/utilities/issues/29
https://security.snyk.io/vuln/SNYK-JS-UTILITIES-3184491
Related Vulnerabilities
CVE-2022-33891 Vulnerability in maven package org.apache.spark:spark-core_2.12
CVE-2022-41957 Vulnerability in npm package muhammara
CVE-2022-34114 Vulnerability in maven package io.dataease:dataease-plugin-common
CVE-2021-43090 Vulnerability in maven package com.predic8:soa-model-parent
CVE-2020-7784 Vulnerability in npm package ts-process-promises