Moderate severityOSV Advisory· Published Jul 11, 2024· Updated Aug 1, 2025
CVE-2024-6531
CVE-2024-6531
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
bootstrapnpm | >= 4.0.0, < 5.0.0 | 5.0.0 |
bootstrapRubyGems | >= 4.0.0, < 5.0.0 | 5.0.0 |
bootstrapNuGet | >= 4.0.0, < 5.0.0 | 5.0.0 |
bootstrap.sassNuGet | >= 4.0.0, < 5.0.0 | 5.0.0 |
twbs/bootstrapPackagist | >= 4.0.0, < 5.0.0 | 5.0.0 |
org.webjars:bootstrapMaven | >= 4.0.0, < 5.0.0 | 5.0.0 |
org.webjars.npm:bootstrapMaven | >= 4.0.0, < 5.0.0 | 5.0.0 |
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- github.com/advisories/GHSA-vc8w-jr9v-vj7fghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-6531ghsaADVISORY
- github.com/rubysec/ruby-advisory-db/blob/master/gems/bootstrap/CVE-2024-6531.ymlghsaWEB
- lists.debian.org/debian-lts-announce/2025/04/msg00021.htmlghsaWEB
- www.herodevs.com/vulnerability-directory/cve-2024-6531ghsaWEB
News mentions
0No linked articles in our index yet.