CVE-2021-3757
npm/immer
Improperly Controlled Modification of Dynamically-Determined Object Attributes
immer is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
All versions up to 9.0.5
Upgrade to version 9.0.6 or above.
2021-09-13
source |