Severity: Critical
CVSS Score: 9.8
math.js before 3.17.0 had an issue where private properties such as a constructor could be replaced by using unicode characters when creating an object.