Flaw in input validation in npm package utils-extend version 1.0.8 and earlier may allow prototype pollution attack that may result in remote code execution or denial of service of applications using utils-extend.
[
{
"product": "utils-extend",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "version 1.0.8 and earlier"
},
{
"status": "affected",
"version": "Not Fixed"
}
]
}
]