2 matches found
@concord-consortium/cloud-file-manager (>=2.0.0-pre.1 <=2.3.1), @hat-core/juggler (>=0.4.0-dev20200410 <=0.4.1-dev20210707) +45 more potentially affected by unknown CVE via jiff (>=0.6.0 <=0.7.3)
jiff NPM version =0.6.0, =2.0.0-pre.1, =0.4.0-dev20200410, =0.5.1-dev20210809, =0.1.0, =1.0.0, =1.0.1, =0.0.3, =2.0.0, =1.0.0, =0.0.1, =0.5.5, =1.0.0-3, =1.0.0-0, =1.0.0, =1.1.2 and more Source cves: unknown CVE Source advisory: SNYK:JS-JIFF-1017118...
@idearium/cli (>=1.0.0 <=4.3.0-beta.0), @stoplight/command (>=0.0.11-1 <=0.0.24) +27 more potentially affected by CVE-2019-10747 via set-value (=3.0.0)
set-value NPM version =3.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on set-value and may be impacted: - @idearium/cli =1.0.0, =0.0.11-1, =0.0.11-29, =0.0.11-1, =0.0.11-1, =0.0.11-1, =0.0.18, =0.0.11-1, =0.0.11-1, =0.0.11-30, =0.0.11-1, =0.0.18,...