GHSA-7fhm-mqm4-2wp7 – acorn

Package

Manager: npm
Name: acorn
Vulnerable Version: <0

Severity

Level: Medium

CVSS v3.1: N/A

CVSS v4.0: N/A

EPSS: N/A pctlN/A

Details

Withdrawn: ESLint dependencies are vulnerable (ReDoS and Prototype Pollution) **Withdrawn** GitHub has withdrawn this advisory in place of GHSA-vh95-rmgr-6w4m and GHSA-6chw-6frg-f759. The reason for withdrawing is that some mistakes were made during the ingestion of CVE-2020-7598 which caused this advisory to be published with incorrect information. In order to provide accurate advisory information, new advisories were created: - minimist: https://github.com/advisories/GHSA-vh95-rmgr-6w4m - acorn: https://github.com/advisories/GHSA-6chw-6frg-f759

Metadata

Created: 2020-03-13T20:36:16Z
Modified: 2020-04-03T21:54:52Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2020/03/GHSA-7fhm-mqm4-2wp7/GHSA-7fhm-mqm4-2wp7.json
CWE IDs: []
Alternative ID: N/A
Finding: N/A
Auto approve: 0