immer is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') Reference: https://huntr.dev/bounties/23d38099-71cd-42ed-a77a-71e68094adfa Upstream patch: https://github.com/immerjs/immer/commit/fa671e55ee9bd42ae08cc239102b665a23958237
This issue has been addressed in the following products: Red Hat Migration Toolkit for Containers 1.5 Via RHSA-2021:4848 https://access.redhat.com/errata/RHSA-2021:4848
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2021-3757