Information Disclosure

2021-05-2806:19:16

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.001 Low

EPSS

Percentile

28.6%

JSON

@keystonejs/keystone is vulnerable to information disclosure. The query infrastructure discloses the values of private fields due to bypass of configured access control.

CPENameOperatorVersion
@keystonejs/keystonele19.3.3

CPE	Name	Operator	Version
	@keystonejs/keystone	le	19.3.3

References

github.com/advisories/GHSA-27g8-r9vw-765x

github.com/keystonejs/keystone-5/security/advisories/GHSA-27g8-r9vw-765x

0.001 Low

EPSS

Percentile

28.6%

JSON

Related for VERACODE:30711