Skip to main content

Json Pointer

3 CVEs product

Monthly

CVE-2022-4742 npm CRITICAL PATCH Act Now

A vulnerability, which was classified as critical, has been found in json-pointer up to 0.6.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improperly Controlled Modification of Object Prototype Attributes (Prototype Pollution) vulnerability could allow attackers to modify object prototypes to inject properties affecting application logic.

Information Disclosure Prototype Pollution Json Pointer
NVD GitHub VulDB
CVSS 3.1
9.8
EPSS
1.0%
CVE-2021-23820 npm CRITICAL POC PATCH Act Now

This affects all versions of package json-pointer. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Authentication Bypass Json Pointer
NVD GitHub
CVSS 3.1
9.8
EPSS
1.8%
CVE-2020-7709 LIB HIGH POC PATCH This Week

This affects the package json-pointer before 0.6.1. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Prototype Pollution Information Disclosure Json Pointer
NVD GitHub
CVSS 3.1
7.2
EPSS
1.8%
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

A vulnerability, which was classified as critical, has been found in json-pointer up to 0.6.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improperly Controlled Modification of Object Prototype Attributes (Prototype Pollution) vulnerability could allow attackers to modify object prototypes to inject properties affecting application logic.

Information Disclosure Prototype Pollution Json Pointer
NVD GitHub VulDB
EPSS 2% CVSS 9.8
CRITICAL POC PATCH Act Now

This affects all versions of package json-pointer. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Authentication Bypass Json Pointer
NVD GitHub
EPSS 2% CVSS 7.2
HIGH POC PATCH This Week

This affects the package json-pointer before 0.6.1. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Prototype Pollution Information Disclosure Json Pointer
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy