Description
In eslint-utils before 1.4.1, the getStaticValue function can execute arbitrary code.
Remediation
References
https://github.com/mysticatea/eslint-utils/security/advisories/GHSA-3gx7-xhv7-5mx3
Related Vulnerabilities
CVE-2022-29237 Vulnerability in maven package org.opencastproject:opencast-ingest-service-impl
CVE-2020-17533 Vulnerability in maven package org.apache.accumulo:accumulo-core
CVE-2019-10284 Vulnerability in maven package org.jenkins-ci.plugins:diawi-upload
CVE-2022-29256 Vulnerability in maven package org.webjars.npm:sharp
CVE-2020-14966 Vulnerability in maven package org.webjars.bower:jsrsasign