Description

This affects all versions of package buns. The injection point is located in line 678 in index file lib/index.js in the exported function install(requestedModule).

Remediation

References

https://snyk.io/vuln/SNYK-JS-BUNS-1050389

Related Vulnerabilities

CVE-2022-45935 Vulnerability in maven package org.apache.james:james-server-data-file

CVE-2018-1000144 Vulnerability in maven package org.jenkins-ci.plugins:cucumber-living-documentation

CVE-2018-8027 Vulnerability in maven package org.apache.camel:camel-core

CVE-2014-9772 Vulnerability in npm package validator

CVE-2019-10287 Vulnerability in maven package org.jenkins-ci.plugins:youtrack-plugin

Severity

Critical

Classification

CWE-78

Tags

Vendor Advisory