CVE-2022-46175 (High) detected in json5-1.0.1

# **[CVE-2022-46175](https://nvd.nist.gov/vuln/detail/CVE-2022-46175) - High Severity Vulnerability**

<details><summary>Vulnerability Library - JSON5 - 1.0.1</summary>


 JSON5 - 1.0.1 (current version)
 Found in base branch: main

</details>

<details><summary>CVSS 3 Score Details - (7.1)</summary>


 - Exploitability Metrics:
 - Attack Vector: Network
 - Attack Complexity: High
 - Privileges Required: Low
 - User Interaction: None
 - Scope: Unchanged
 - Impact Metrics:
 - Confidentiality Impact: High
 - Integrity Impact: Low
 - Availability Impact: High


</details>

<details><summary>Suggested Fix</summary>


Type: Upgrade version

Release Date: Dec 16, 2022

Fix Resolution: json5 - 1.0.2

</details>

<details><summary>More Info</summary>


json5 issue resolved with [#295](https://github.com/json5/json5/issues/295#issuecomment-1368766058)

</details>

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CVE-2022-46175 (High) detected in json5-1.0.1 #3305

CVE-2022-46175 - High Severity Vulnerability

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development