CVE-2021-4279

Name of the Vulnerable Software and Affected Versions Starcounter-Jack JSON-Patch versions up to 3.1.0

Description A vulnerability has been found in Starcounter-Jack JSON-Patch, classified as problematic. This issue affects unknown code and leads to improperly controlled modification of object prototype attributes, known as 'prototype pollution'. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 3.1.1 can address this issue.

Recommendations For Starcounter-Jack JSON-Patch versions up to 3.1.0, upgrade to version 3.1.1 to address the issue. As a temporary workaround, consider restricting access to the affected component until the upgrade is applied.