CVE-2021-23807

This affects the package jsonpointer before 5.0.0. A type confusion vulnerability can lead to a bypass of a previous Prototype Pollution fix when the pointer components are arrays.
Configurations

Configuration 1

cpe:2.3:a:jsonpointer_project:jsonpointer:*:*:*:*:*:node.js:*:*

Information

Published : 2021-11-03 06:15

Updated : 2021-11-05 06:08


NVD link : CVE-2021-23807

Mitre link : CVE-2021-23807

Products Affected
No products.
CWE