References to Advisories, Solutions, and Tools By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information…

CVE-2021-21694 Detail Undergoing Analysis This vulnerability is currently undergoing analysis and not all information is available. Please check back soon to view the completed vulnerability summary. Description FilePath#toURI, FilePath#hasSymlink, FilePath#absolutize,…

References to Advisories, Solutions, and Tools By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information…

References to Advisories, Solutions, and Tools By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information…

References to Advisories, Solutions, and Tools By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information…

References to Advisories, Solutions, and Tools By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information…

Added CPE Configuration OR *cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* versions from (including) 13.5.0 up to (excluding) 14.0.9 *cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* versions from (including) 13.5.0 up to (excluding) 14.0.9 Added CPE Configuration Record truncated, showing 500 of…

References to Advisories, Solutions, and Tools By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information…

Added CPE Configuration OR *cpe:2.3:a:bootstrap_table_project:bootstrap_table:-:*:*:*:*:*:*:* Added CVSS V2 NIST (AV:N/AC:M/Au:N/C:N/I:P/A:N) Added CVSS V2 Metadata Victim must voluntarily interact with attack mechanism Added CVSS V3.1 NIST AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Added CWE NIST CWE-79…

CVE-2021-23509 Detail Current Description This affects the package json-ptr before 3.0.0. A type confusion vulnerability can lead to a bypass of CVE-2020-7766 when the user-provided keys used in the pointer…