Description
This affects the package json-pointer before 0.6.1. Multiple reference of object using slash is supported.
Remediation
References
https://github.com/manuelstofer/json-pointer/pull/34/files
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-598862
https://snyk.io/vuln/SNYK-JS-JSONPOINTER-596925
Related Vulnerabilities
CVE-2019-16303 Vulnerability in npm package generator-jhipster
CVE-2023-25763 Vulnerability in maven package org.jenkins-ci.plugins:email-ext
CVE-2021-21414 Vulnerability in npm package @prisma/sdk
CVE-2020-28441 Vulnerability in npm package conf-cfg-ini
CVE-2021-21166 Vulnerability in maven package org.webjars.npm:electron