Vulnerabilities (CVE)

Filtered by vendor Joyent Subscribe
Filtered by product Json
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-7712 2 Joyent, Oracle 5 Json, Commerce Guided Search, Financial Services Crime And Compliance Management Studio and 2 more 2024-11-21 6.5 MEDIUM 7.2 HIGH
This affects the package json before 10.0.0. It is possible to inject arbritary commands using the parseLookup function.