CVE-2021-23509

This affects the package json-ptr before 3.0.0. A type confusion vulnerability can lead to a bypass of CVE-2020-7766 when the user-provided keys used in the pointer parameter are arrays.
Configurations

Configuration 1

cpe:2.3:a:json-ptr_project:json-ptr:*:*:*:*:*:*:*:*

Information

Published : 2021-11-03 06:15

Updated : 2021-11-05 09:01


NVD link : CVE-2021-23509

Mitre link : CVE-2021-23509

Products Affected
No products.
CWE