Moderate severityNVD Advisory· Published Feb 16, 2022· Updated Aug 2, 2024
Authorization Bypass Through User-Controlled Key in medialize/uri.js
CVE-2022-0613
Description
Authorization Bypass Through User-Controlled Key in NPM urijs prior to 1.19.8.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
urijsnpm | < 1.19.8 | 1.19.8 |
Affected products
2- medialize/medialize/uri.jsv5Range: unspecified
Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-gcv8-gh4r-25x6ghsaADVISORY
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MXSSATHALUSXXD2KT6UFZAX7EG4GR332/mitrevendor-advisoryx_refsource_FEDORA
- nvd.nist.gov/vuln/detail/CVE-2022-0613ghsaADVISORY
- github.com/medialize/uri.js/commit/6ea641cc8648b025ed5f30b090c2abd4d1a5249fghsax_refsource_MISCWEB
- huntr.dev/bounties/f53d5c42-c108-40b8-917d-9dad51535083ghsax_refsource_CONFIRMWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MXSSATHALUSXXD2KT6UFZAX7EG4GR332ghsaWEB
News mentions
0No linked articles in our index yet.