Search

Find a vulnerability

Search criteria

    2 vulnerabilities found for npm by npm

    CVE-2022-29244 (GCVE-0-2022-29244)

    Vulnerability from nvd – Published: 2022-06-13 13:40 – Updated: 2025-04-23 16:23
    VLAI
    Title
    npm packing does not respect root-level ignore files in workspaces
    Summary
    npm pack ignores root-level .gitignore and .npmignore file exclusion directives when run in a workspace or with a workspace flag (ie. `--workspaces`, `--workspace=<name>`). Anyone who has run `npm pack` or `npm publish` inside a workspace, as of v7.9.0 and v7.13.0 respectively, may be affected and have published files into the npm registry they did not intend to include. Users should upgrade to the latest, patched version of npm v8.11.0, run: npm i -g npm@latest . Node.js versions v16.15.1, v17.19.1, and v18.3.0 include the patched v8.11.0 version of npm.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    npm npm Affected: 7.9.0 , < 7.9.0* (custom)
    Affected: 8.11.0 , < 8.11.0 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T06:17:54.265Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/npm/cli/security/advisories/GHSA-hj9c-8jmm-8c52"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/npm/npm-packlist"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpublish"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpack"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/nodejs/node/pull/43210"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/npm/cli/releases/tag/v8.11.0"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/nodejs/node/releases/tag/v16.15.1"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/nodejs/node/releases/tag/v17.9.1"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/nodejs/node/releases/tag/v18.3.0"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://security.netapp.com/advisory/ntap-20220722-0007/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 7.5,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-29244",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-04-23T16:23:19.387034Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-04-23T16:23:31.058Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "npm",
              "vendor": "npm",
              "versions": [
                {
                  "lessThan": "7.9.0*",
                  "status": "affected",
                  "version": "7.9.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "8.11.0",
                  "status": "affected",
                  "version": "8.11.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "npm pack ignores root-level .gitignore and .npmignore file exclusion directives when run in a workspace or with a workspace flag (ie. `--workspaces`, `--workspace=\u003cname\u003e`). Anyone who has run `npm pack` or `npm publish` inside a workspace, as of v7.9.0 and v7.13.0 respectively, may be affected and have published files into the npm registry they did not intend to include. Users should upgrade to the latest, patched version of npm v8.11.0, run: npm i -g npm@latest . Node.js versions v16.15.1, v17.19.1, and v18.3.0 include the patched v8.11.0 version of npm."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-200",
                  "description": "CWE-200 Information Exposure",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-07-22T18:09:17.000Z",
            "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
            "shortName": "GitHub_M"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/npm/cli/security/advisories/GHSA-hj9c-8jmm-8c52"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/npm/npm-packlist"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpublish"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpack"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/nodejs/node/pull/43210"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/npm/cli/releases/tag/v8.11.0"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/nodejs/node/releases/tag/v16.15.1"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/nodejs/node/releases/tag/v17.9.1"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/nodejs/node/releases/tag/v18.3.0"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://security.netapp.com/advisory/ntap-20220722-0007/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "npm packing does not respect root-level ignore files in workspaces",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "security-advisories@github.com",
              "ID": "CVE-2022-29244",
              "STATE": "PUBLIC",
              "TITLE": "npm packing does not respect root-level ignore files in workspaces"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "npm",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003e=",
                                "version_name": "7.9.0",
                                "version_value": "7.9.0"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_name": "8.11.0",
                                "version_value": "8.11.0"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "npm"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "npm pack ignores root-level .gitignore and .npmignore file exclusion directives when run in a workspace or with a workspace flag (ie. `--workspaces`, `--workspace=\u003cname\u003e`). Anyone who has run `npm pack` or `npm publish` inside a workspace, as of v7.9.0 and v7.13.0 respectively, may be affected and have published files into the npm registry they did not intend to include. Users should upgrade to the latest, patched version of npm v8.11.0, run: npm i -g npm@latest . Node.js versions v16.15.1, v17.19.1, and v18.3.0 include the patched v8.11.0 version of npm."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-200 Information Exposure"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://github.com/npm/cli/security/advisories/GHSA-hj9c-8jmm-8c52",
                  "refsource": "MISC",
                  "url": "https://github.com/npm/cli/security/advisories/GHSA-hj9c-8jmm-8c52"
                },
                {
                  "name": "https://github.com/npm/npm-packlist",
                  "refsource": "MISC",
                  "url": "https://github.com/npm/npm-packlist"
                },
                {
                  "name": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpublish",
                  "refsource": "MISC",
                  "url": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpublish"
                },
                {
                  "name": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpack",
                  "refsource": "MISC",
                  "url": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpack"
                },
                {
                  "name": "https://github.com/nodejs/node/pull/43210",
                  "refsource": "MISC",
                  "url": "https://github.com/nodejs/node/pull/43210"
                },
                {
                  "name": "https://github.com/npm/cli/releases/tag/v8.11.0",
                  "refsource": "MISC",
                  "url": "https://github.com/npm/cli/releases/tag/v8.11.0"
                },
                {
                  "name": "https://github.com/nodejs/node/releases/tag/v16.15.1",
                  "refsource": "MISC",
                  "url": "https://github.com/nodejs/node/releases/tag/v16.15.1"
                },
                {
                  "name": "https://github.com/nodejs/node/releases/tag/v17.9.1",
                  "refsource": "MISC",
                  "url": "https://github.com/nodejs/node/releases/tag/v17.9.1"
                },
                {
                  "name": "https://github.com/nodejs/node/releases/tag/v18.3.0",
                  "refsource": "MISC",
                  "url": "https://github.com/nodejs/node/releases/tag/v18.3.0"
                },
                {
                  "name": "https://security.netapp.com/advisory/ntap-20220722-0007/",
                  "refsource": "CONFIRM",
                  "url": "https://security.netapp.com/advisory/ntap-20220722-0007/"
                }
              ]
            },
            "source": {
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "assignerShortName": "GitHub_M",
        "cveId": "CVE-2022-29244",
        "datePublished": "2022-06-13T13:40:27.000Z",
        "dateReserved": "2022-04-13T00:00:00.000Z",
        "dateUpdated": "2025-04-23T16:23:31.058Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-29244 (GCVE-0-2022-29244)

    Vulnerability from cvelistv5 – Published: 2022-06-13 13:40 – Updated: 2025-04-23 16:23
    VLAI
    Title
    npm packing does not respect root-level ignore files in workspaces
    Summary
    npm pack ignores root-level .gitignore and .npmignore file exclusion directives when run in a workspace or with a workspace flag (ie. `--workspaces`, `--workspace=<name>`). Anyone who has run `npm pack` or `npm publish` inside a workspace, as of v7.9.0 and v7.13.0 respectively, may be affected and have published files into the npm registry they did not intend to include. Users should upgrade to the latest, patched version of npm v8.11.0, run: npm i -g npm@latest . Node.js versions v16.15.1, v17.19.1, and v18.3.0 include the patched v8.11.0 version of npm.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    npm npm Affected: 7.9.0 , < 7.9.0* (custom)
    Affected: 8.11.0 , < 8.11.0 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T06:17:54.265Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/npm/cli/security/advisories/GHSA-hj9c-8jmm-8c52"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/npm/npm-packlist"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpublish"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpack"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/nodejs/node/pull/43210"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/npm/cli/releases/tag/v8.11.0"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/nodejs/node/releases/tag/v16.15.1"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/nodejs/node/releases/tag/v17.9.1"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://github.com/nodejs/node/releases/tag/v18.3.0"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://security.netapp.com/advisory/ntap-20220722-0007/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 7.5,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-29244",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-04-23T16:23:19.387034Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-04-23T16:23:31.058Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "npm",
              "vendor": "npm",
              "versions": [
                {
                  "lessThan": "7.9.0*",
                  "status": "affected",
                  "version": "7.9.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "8.11.0",
                  "status": "affected",
                  "version": "8.11.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "npm pack ignores root-level .gitignore and .npmignore file exclusion directives when run in a workspace or with a workspace flag (ie. `--workspaces`, `--workspace=\u003cname\u003e`). Anyone who has run `npm pack` or `npm publish` inside a workspace, as of v7.9.0 and v7.13.0 respectively, may be affected and have published files into the npm registry they did not intend to include. Users should upgrade to the latest, patched version of npm v8.11.0, run: npm i -g npm@latest . Node.js versions v16.15.1, v17.19.1, and v18.3.0 include the patched v8.11.0 version of npm."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-200",
                  "description": "CWE-200 Information Exposure",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-07-22T18:09:17.000Z",
            "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
            "shortName": "GitHub_M"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/npm/cli/security/advisories/GHSA-hj9c-8jmm-8c52"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/npm/npm-packlist"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpublish"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpack"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/nodejs/node/pull/43210"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/npm/cli/releases/tag/v8.11.0"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/nodejs/node/releases/tag/v16.15.1"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/nodejs/node/releases/tag/v17.9.1"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://github.com/nodejs/node/releases/tag/v18.3.0"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://security.netapp.com/advisory/ntap-20220722-0007/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "npm packing does not respect root-level ignore files in workspaces",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "security-advisories@github.com",
              "ID": "CVE-2022-29244",
              "STATE": "PUBLIC",
              "TITLE": "npm packing does not respect root-level ignore files in workspaces"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "npm",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003e=",
                                "version_name": "7.9.0",
                                "version_value": "7.9.0"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_name": "8.11.0",
                                "version_value": "8.11.0"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "npm"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "npm pack ignores root-level .gitignore and .npmignore file exclusion directives when run in a workspace or with a workspace flag (ie. `--workspaces`, `--workspace=\u003cname\u003e`). Anyone who has run `npm pack` or `npm publish` inside a workspace, as of v7.9.0 and v7.13.0 respectively, may be affected and have published files into the npm registry they did not intend to include. Users should upgrade to the latest, patched version of npm v8.11.0, run: npm i -g npm@latest . Node.js versions v16.15.1, v17.19.1, and v18.3.0 include the patched v8.11.0 version of npm."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-200 Information Exposure"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://github.com/npm/cli/security/advisories/GHSA-hj9c-8jmm-8c52",
                  "refsource": "MISC",
                  "url": "https://github.com/npm/cli/security/advisories/GHSA-hj9c-8jmm-8c52"
                },
                {
                  "name": "https://github.com/npm/npm-packlist",
                  "refsource": "MISC",
                  "url": "https://github.com/npm/npm-packlist"
                },
                {
                  "name": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpublish",
                  "refsource": "MISC",
                  "url": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpublish"
                },
                {
                  "name": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpack",
                  "refsource": "MISC",
                  "url": "https://github.com/npm/cli/tree/latest/workspaces/libnpmpack"
                },
                {
                  "name": "https://github.com/nodejs/node/pull/43210",
                  "refsource": "MISC",
                  "url": "https://github.com/nodejs/node/pull/43210"
                },
                {
                  "name": "https://github.com/npm/cli/releases/tag/v8.11.0",
                  "refsource": "MISC",
                  "url": "https://github.com/npm/cli/releases/tag/v8.11.0"
                },
                {
                  "name": "https://github.com/nodejs/node/releases/tag/v16.15.1",
                  "refsource": "MISC",
                  "url": "https://github.com/nodejs/node/releases/tag/v16.15.1"
                },
                {
                  "name": "https://github.com/nodejs/node/releases/tag/v17.9.1",
                  "refsource": "MISC",
                  "url": "https://github.com/nodejs/node/releases/tag/v17.9.1"
                },
                {
                  "name": "https://github.com/nodejs/node/releases/tag/v18.3.0",
                  "refsource": "MISC",
                  "url": "https://github.com/nodejs/node/releases/tag/v18.3.0"
                },
                {
                  "name": "https://security.netapp.com/advisory/ntap-20220722-0007/",
                  "refsource": "CONFIRM",
                  "url": "https://security.netapp.com/advisory/ntap-20220722-0007/"
                }
              ]
            },
            "source": {
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "assignerShortName": "GitHub_M",
        "cveId": "CVE-2022-29244",
        "datePublished": "2022-06-13T13:40:27.000Z",
        "dateReserved": "2022-04-13T00:00:00.000Z",
        "dateUpdated": "2025-04-23T16:23:31.058Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }