CVE-2021-23406

Remote Code Execution in npm/pac-resolver

Identifier

CVE-2021-23406

Package Slug

npm/pac-resolver

Vulnerability

Remote Code Execution

Description

The package pac-resolver is vulnerable to a Remote Code Execution vulnerability. This can occur when used with untrusted input, due to unsafe PAC file handling.

Affected Versions

All versions before 5.0.0

Solution

Upgrade to version 5.0.0 or above.

Last Modified

2021-09-01

source