Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES SCA (Software Composition Analysis)

CVE-2020-7742 Vulnerability in npm package simpl-schema

Description

This affects the package simpl-schema before 1.10.2.

Remediation

References

https://github.com/aldeed/simpl-schema/blob/main/package/lib/utility/merge.js

https://snyk.io/vuln/SNYK-JS-SIMPLSCHEMA-1016157

Related Vulnerabilities

CVE-2023-24815 Vulnerability in maven package io.vertx:vertx-web

CVE-2021-29300 Vulnerability in npm package opened

CVE-2011-3190 Vulnerability in maven package org.apache.tomcat:tomcat-coyote

CVE-2019-1010266 Vulnerability in npm package lodash

CVE-2021-23346 Vulnerability in npm package html-parse-stringify2

Severity

High

Classification

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Exploit Third Party Advisory Broken Link NVD-CWE-noinfo