Description
The package jointjs before 3.3.0 are vulnerable to Denial of Service (DoS) via the unsetByPath function.
Remediation
References
https://github.com/clientIO/joint/releases/tag/v3.3.0
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1062040
https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1062039
https://snyk.io/vuln/SNYK-JS-JOINTJS-1062038
Related Vulnerabilities
CVE-2021-39235 Vulnerability in maven package org.apache.ozone:ozone-main
CVE-2020-13920 Vulnerability in maven package org.apache.activemq:activemq-core
CVE-2022-23539 Vulnerability in npm package jsonwebtoken
CVE-2020-26256 Vulnerability in npm package @fast-csv/parse
CVE-2018-1999003 Vulnerability in maven package org.jenkins-ci.main:jenkins-core