CVE-2022-37266: steal vulnerable to Prototype Pollution via key variable in babel.js

Severity: Critical

CVSS Score: 9.8

Prototype pollution vulnerability in function extend in babel.js in stealjs steal 2.2.4 via the key variable in babel.js.