Security Advisory

CVE-2021-23440

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-09-12 12:55:10

Last updated 2024-09-16 19:20:29

Assigner snyk

State PUBLISHED

Description

This affects the package set-value before <2.0.1, >=3.0.0 <4.0.1. A type confusion vulnerability can lead to a bypass of CVE-2019-10747 when the user-provided keys used in the path parameter are arrays.

← Browse all CVEs View on cve.org ↗