Description
All versions of package comb are vulnerable to Prototype Pollution via the deepMerge() function.
Remediation
References
https://snyk.io/vuln/SNYK-JS-COMB-1730083
Related Vulnerabilities
CVE-2020-28498 Vulnerability in npm package elliptic
CVE-2019-13127 Vulnerability in maven package org.webjars.bower:mxgraph
CVE-2022-42890 Vulnerability in maven package org.apache.xmlgraphics:batik-script
CVE-2010-1622 Vulnerability in maven package org.springframework:spring-beans
CVE-2023-46657 Vulnerability in maven package org.jenkins-ci.plugins:gogs-webhook