This affects the package pac-resolver before 5.0.0. This can occur when used with untrusted input, due to unsafe PAC file handling. **NOTE:** The fix for this vulnerability is applied in the node-degenerator library, a dependency written by the same maintainer.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: snyk
Published: 2021-08-24T07:45:13.637967Z
Updated: 2024-09-17T02:26:53.603Z
Reserved: 2021-01-08T00:00:00
Link: CVE-2021-23406
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-08-24T08:15:18.180
Modified: 2021-08-30T19:15:28.817
Link: CVE-2021-23406
Redhat