Description
unicode-json is a unicode lookup table. unicode-json before 2.0.0 downloads data resources over HTTP, which leaves it vulnerable to MITM attacks.
Remediation
References
https://nodesecurity.io/advisories/206
Related Vulnerabilities
CVE-2019-14772 Vulnerability in maven package org.webjars.npm:verdaccio
CVE-2019-14863 Vulnerability in maven package org.webjars.npm:angular
CVE-2021-46708 Vulnerability in maven package org.webjars.bower:swagger-ui
CVE-2019-11819 Vulnerability in maven package org.opencms:org.opencms.workplace.tools.accounts
CVE-2016-10687 Vulnerability in npm package windows-selenium-chromedriver