Description
All versions of package comb are vulnerable to Prototype Pollution via the deepMerge() function.
Remediation
References
https://snyk.io/vuln/SNYK-JS-COMB-1730083
Related Vulnerabilities
CVE-2022-36886 Vulnerability in maven package org.jenkins-ci.plugins:external-monitor-job
CVE-2023-40339 Vulnerability in maven package org.jenkins-ci.plugins:config-file-provider
CVE-2021-21351 Vulnerability in maven package com.thoughtworks.xstream:xstream
CVE-2017-16174 Vulnerability in npm package whispercast
CVE-2021-44228 Vulnerability in maven package org.apache.logging.log4j:log4j-core