Description
All versions of package config-handler are vulnerable to Prototype Pollution when loading config files.
Remediation
References
https://github.com/jarradseers/config-handler/issues/1
https://snyk.io/vuln/SNYK-JS-CONFIGHANDLER-1564947
Related Vulnerabilities
CVE-2022-38900 Vulnerability in npm package decode-uri-component
CVE-2019-17633 Vulnerability in maven package org.eclipse.che:assembly-wsmaster-war
CVE-2020-2297 Vulnerability in maven package com.hoiio.jenkins:sms
CVE-2020-11612 Vulnerability in maven package io.netty:netty-codec
CVE-2023-43495 Vulnerability in maven package org.jenkins-ci.main:jenkins-core