CVE-2021-23397

Summary

All versions of package @ianwalter/merge are vulnerable to Prototype Pollution via the main (merge) function. Maintainer suggests using @generates/merger instead.

Affected Software

VendorProductVersion RangeStatus
n/a@ianwalter/merge0 < unspecifiedaffected

Weaknesses

  • Prototype Pollution

ADP Enrichment

CVE Program Container

Additional References

References