Vulnerabilities > CVE-2021-23421 - Unspecified vulnerability in Merge-Change Project Merge-Change
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
All versions of package merge-change are vulnerable to Prototype Pollution via the utils.set function.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |