Description

This affects all versions of package buns. The injection point is located in line 678 in index file lib/index.js in the exported function install(requestedModule).

Remediation

References

https://snyk.io/vuln/SNYK-JS-BUNS-1050389

Related Vulnerabilities

CVE-2015-6524 Vulnerability in maven package org.apache.activemq:activemq-osgi

CVE-2022-45921 Vulnerability in maven package io.fusionauth:fusionauth-java-client

CVE-2017-15691 Vulnerability in maven package org.apache.uima:uimafit

CVE-2020-13953 Vulnerability in maven package org.apache.tapestry:tapestry-core

CVE-2020-1942 Vulnerability in maven package org.apache.nifi:nifi-framework

Severity

Critical

Classification

CWE-78

Tags

Vendor Advisory