Description
Prototype pollution vulnerability in 'object-collider' versions 1.0.0 through 1.0.3 allows attacker to cause a denial of service and may lead to remote code execution.
Remediation
References
https://www.whitesourcesoftware.com/vulnerability-database/CVE-2021-25914
https://github.com/FireBlinkLTD/object-collider/commit/321f75a7f8e7b3393e5b7dd6dd9ab26ede5906e5
Related Vulnerabilities
CVE-2021-21412 Vulnerability in npm package egf
CVE-2022-22947 Vulnerability in maven package org.springframework.cloud:spring-cloud-gateway
CVE-2018-19838 Vulnerability in maven package org.webjars.npm:node-sass
CVE-2021-23346 Vulnerability in npm package html-parse-stringify2
CVE-2022-36911 Vulnerability in maven package org.jenkins-ci.plugins:openstack-heat