Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package json-ptr, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2020-7766 — CVSS 7.3 (high): This affects all versions of package json-ptr. The issue occurs in the set operation (https://flitbit.github.io/json-ptr/classes/_src_pointe…
CVE-2021-23509 — CVSS 5.6 (medium): This affects the package json-ptr before 3.0.0. A type confusion vulnerability can lead to a bypass of CVE-2020-7766 when the user-provided…