5 matches found
@convergence/jointjs-utils (>=0.1.0 <=0.4.0), @davidyaha/graphql-birdseye (>=1.0.7 <=1.0.8) +33 more potentially affected by CVE-2020-28479 via jointjs (>=0.9.10 <=3.2.0)
jointjs NPM version =0.9.10, =0.1.0, =1.0.7, =0.1.0, =0.1.3, =0.8.2, =1.5.30, =1.0.1, =1.0.0-alpha.1, =1.0.0, =0.0.3, =0.1.0, =1.0.6, =1.3.0 and more Source cves: CVE-2020-28479 Source advisory: OSV:GHSA-CQ8R-FC3Q-6HG2...
CVE-2020-28479
The package jointjs before 3.3.0 are vulnerable to Denial of Service DoS via the unsetByPath function...
CVE-2020-28479
The CVE-2020-28479 entry concerns the jointjs library. Concrete details from connected sources show that affected versions are jointjs before 3.3.0, with the vulnerability arising from the unsetByPath function, enabling a Denial of Service (DoS). The DoS impact is described as the service becomin...
CVE-2020-28479 Denial of Service (DoS)
The package jointjs before 3.3.0 are vulnerable to Denial of Service DoS via the unsetByPath function...
@convergence/jointjs-utils (=0.4.0), aihub (>=1.0.1 <=1.0.2) +7 more potentially affected by CVE-2020-28479 via jointjs (>=3.1.0 <=3.2.0)
jointjs NPM version =3.1.0, =1.0.1, =1.0.6, =1.0.1, =1.0.1, =0.9.0, =0.10.1 - ublatt =1.2.0 - vue-erd =0.1.1 - vue-test-demo-one =0.1.0 Source cves: CVE-2020-28479 Source advisory: SNYK:JS-JOINTJS-1062038...