Alma Security

**Name of the Vulnerable Software and Affected Versions** CASL Ability versions 2.4.0 through 6.7.4 **Description** CASL Ability contains a prototype pollution vulnerability. This issue affects versions 2.4.0 through 6.7.4. Prototype pollution occurs when an attacker manipulates the properties of JavaScript objects, potentially leading to denial of service or unauthorized access. **Recommendations** Update CASL Ability to a version later than 6.7.4.