CVE-2023-26105
CVE-2023-26105 affects all versions of the mde utilities package. The root cause is a vulnerability in the _mix function used during object merging, enabling prototype pollution with high impact (CVSS v3.1: 7.5, AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H). Multiple advisories and records (NVD, Red Hat, ...