CVE-2021-23820

Published November 3rd, 2021

View on NVD ↗

CVSS v3

5.6

MEDIUM

CVSS v2

7.5

HIGH

Affected

PROJECT

Description

This affects all versions of package json-pointer. A type confusion vulnerability can lead to a bypass of CVE-2020-7709 when the pointer components are arrays.

manuelstofer/json-pointer

Some utilities for the JSON pointers described by RFC 6901

GitHub

183