CVE-2021-23421
All versions of package merge-change are vulnerable to Prototype Pollution via the utils.set function.
9.8CVSS
9.4AI Score
0.005EPSS