Description
In schema-inspector before 1.6.9, a maliciously crafted JavaScript object can bypass the `sanitize()` and the `validate()` function used within schema-inspector.
Remediation
References
https://github.com/Atinux/schema-inspector/commit/345a7b2eed11bb6128421150d65f4f83fdbb737d
https://snyk.io/vuln/SNYK-JS-SCHEMAINSPECTOR-536970
Related Vulnerabilities
CVE-2022-31160 Vulnerability in maven package org.webjars.npm:jquery-ui
CVE-2020-13935 Vulnerability in maven package org.apache.tomcat:tomcat-websocket
CVE-2018-1273 Vulnerability in maven package org.springframework.data:spring-data-commons
CVE-2022-2421 Vulnerability in maven package org.webjars.npm:socket.io-parser
CVE-2021-21388 Vulnerability in npm package systeminformation