CVE-2026-52746
HIGH SEVERITYCVSS Score & Metrics
Base Score
7.5 / 10
Vulnerability Description
jsonata: Malicious inputs to "$toMillis" function can cause resource exhaustion
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
npm
Product
jsonata
External References
- https://github.com/jsonata-js/jsonata/security/advisories/GHSA-86vw-mfpg-wwv9
- https://github.com/jsonata-js/jsonata/pull/782
- https://github.com/jsonata-js/jsonata/pull/793
- https://github.com/jsonata-js/jsonata/commit/80ba95d170f74e3f20f4f36b8b77d8c85cea7686
- https://github.com/jsonata-js/jsonata/commit/d6ffc17cb16a8e53c222205bd274624e919cce0b
- https://github.com/jsonata-js/jsonata/releases/tag/v2.2.0
- https://github.com/advisories/GHSA-86vw-mfpg-wwv9
Discussion (0)
Add Comment
No comments yet. Be the first!