The package linux-cmdline before 1.0.1 are vulnerable to Prototype Pollution via the constructor.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-1321,
Products Affected