CVE-2022-0686

Name of the Vulnerable Software and Affected Versions url-parse versions prior to 1.5.8

Description The issue is related to an Authorization Bypass Through User-Controlled Key. This allows for potential unauthorized access. The estimated number of potentially affected devices worldwide is not specified. There is no information provided about real-world incidents where this issue was exploited.

Recommendations For versions prior to 1.5.8, update to version 1.5.8 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive areas that rely on the url-parse package until the update is applied.