0.001 Low
EPSS
Percentile
48.2%
This affects the package simpl-schema before 1.10.2. Attacker controlled input into a schema could result in remote code execution within the scope of the surrounding application.
github.com/longshotlabs/simpl-schema/commit/50128841fa7fc2d137c36a397054279144caea3d
github.com/longshotlabs/simpl-schema/releases/tag/1.10.2
nvd.nist.gov/vuln/detail/CVE-2020-7742
snyk.io/vuln/SNYK-JS-SIMPLSCHEMA-1016157