Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
merge-deep2 is vulnerable to Prototype Pollution via the mergeDeep() function.
Advisories for Npm/Merge-Deep2 package
2021
merge-deep2 is vulnerable to Prototype Pollution via the mergeDeep() function.