Vulnerability Details CVE-2020-7709
This affects the package json-pointer before 0.6.1. Multiple reference of object using slash is supported.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 76.5%
CVSS Severity
CVSS v3 Score 6.0
CVSS v2 Score 6.5
References
- https://github.com/manuelstofer/json-pointer/pull/34/files
- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-598862
- https://snyk.io/vuln/SNYK-JS-JSONPOINTER-596925
- https://github.com/manuelstofer/json-pointer/pull/34/files
- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-598862
- https://snyk.io/vuln/SNYK-JS-JSONPOINTER-596925
Products affected by CVE-2020-7709
-
cpe:2.3:a:manuelstofer:json-pointer:-
-
cpe:2.3:a:manuelstofer:json-pointer:0.0.2
-
cpe:2.3:a:manuelstofer:json-pointer:0.0.3
-
cpe:2.3:a:manuelstofer:json-pointer:0.0.4
-
cpe:2.3:a:manuelstofer:json-pointer:0.1.0
-
cpe:2.3:a:manuelstofer:json-pointer:0.2.1
-
cpe:2.3:a:manuelstofer:json-pointer:0.2.2
-
cpe:2.3:a:manuelstofer:json-pointer:0.3.0
-
cpe:2.3:a:manuelstofer:json-pointer:0.3.1
-
cpe:2.3:a:manuelstofer:json-pointer:0.4.0
-
cpe:2.3:a:manuelstofer:json-pointer:0.5.0
-
cpe:2.3:a:manuelstofer:json-pointer:0.6.0