Homepage
About Snyk

@thi.ng/paths@4.2.13 vulnerabilities

Immutable, optimized and optionally typed path-based object property / array accessors with structural sharing

Go back to all versions of this package
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the @thi.ng/paths package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Improper Control of Dynamically-Managed Code Resources

@thi.ng/paths is an Immutable, optimized and optionally typed path-based object property / array accessors with structural sharing

Affected versions of this package are vulnerable to Improper Control of Dynamically-Managed Code Resources due to the improper handling of object properties in the mutIn and mutInManyUnsafe components. An attacker can execute arbitrary code on the victim's system by supplying a specially crafted object.

How to fix Improper Control of Dynamically-Managed Code Resources?

Upgrade @thi.ng/paths to version 5.1.63 or higher.

<5.1.63
Go back to all versions of this package