Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
ManuelstoferJson-pointer

2 matches found

CVE
CVEadded 2020/10/05 7:50 a.m.105 views

CVE-2020-7709

CVE-2020-7709 affects the json-pointer package prior to 0.6.1. A type confusion vulnerability occurs when pointer components are arrays, which can bypass the fix for CVE-2020-7709. The issue has been echoed downstream in related advisories (e.g., CVE-2021-23820) and is discussed in npm advisory e...

7.2CVSS6.2AI score0.01029EPSS
CVE
CVEadded 2021/11/03 5:20 p.m.90 views

CVE-2021-23820

CVE-2021-23820 is a prototype pollution/type confusion vulnerability affecting all versions of the json-pointer package, with documented remediation path in the related advisory: vulnerable up to version 0.6.1. The root cause is a type confusion that can bypass CVE-2020-7709 when pointer componen...

9.8CVSS6.1AI score0.01029EPSS