VYPR

npm package

@apidevtools/json-schema-ref-parser

pkg:npm/%40apidevtools/json-schema-ref-parser

Vulnerabilities (1)

  • CVE-2024-29651HigMay 20, 2024
    affected >= 11.0.0, < 11.2.0fixed 11.2.0

    A Prototype Pollution issue in API Dev Tools json-schema-ref-parser v.11.0.0 and v.11.1.0 allows a remote attacker to execute arbitrary code via the bundle()`, `parse()`, `resolve()`, `dereference() functions.