VulnerableCode Package Details - pkg:deb/debian/node-ajv@8.18.0~ds%2B~cs6.1.1-1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-1znw-5dwm-7ydy	ajv has ReDoS when using `$data` option ajv (Another JSON Schema Validator) through version 8.17.1 is vulnerable to Regular Expression Denial of Service (ReDoS) when the `$data` option is enabled. The pattern keyword accepts runtime data via JSON Pointer syntax (`$data` reference), which is passed directly to the JavaScript `RegExp()` constructor without validation. An attacker can inject a malicious regex pattern (e.g., `\"^(a\|a)*$\"`) combined with crafted input to cause catastrophic backtracking. A 31-character payload causes approximately 44 seconds of CPU blocking, with each additional character doubling execution time. This enables complete denial of service with a single HTTP request against any API using ajv with `$data`: true for dynamic schema validation.	CVE-2025-69873 GHSA-2g4f-4pwh-qvx6
VCID-kh5k-ynnf-2bbx	Prototype Pollution in Ajv An issue was discovered in ajv.validate() in Ajv (aka Another JSON Schema Validator) 6.12.2. A carefully crafted JSON schema could be provided that allows execution of other code by prototype pollution. (While untrusted schemas are recommended against, the worst case of an untrusted schema should be a denial of service, not execution of code.)	CVE-2020-15366 GHSA-v88g-cgmw-v5xw

Vulnerability

Summary

Aliases

VCID-1znw-5dwm-7ydy

ajv has ReDoS when using `$data` option ajv (Another JSON Schema Validator) through version 8.17.1 is vulnerable to Regular Expression Denial of Service (ReDoS) when the `$data` option is enabled. The pattern keyword accepts runtime data via JSON Pointer syntax (`$data` reference), which is passed directly to the JavaScript `RegExp()` constructor without validation. An attacker can inject a malicious regex pattern (e.g., `\"^(a|a)*$\"`) combined with crafted input to cause catastrophic backtracking. A 31-character payload causes approximately 44 seconds of CPU blocking, with each additional character doubling execution time. This enables complete denial of service with a single HTTP request against any API using ajv with `$data`: true for dynamic schema validation.

CVE-2025-69873
GHSA-2g4f-4pwh-qvx6

VCID-kh5k-ynnf-2bbx

Prototype Pollution in Ajv An issue was discovered in ajv.validate() in Ajv (aka Another JSON Schema Validator) 6.12.2. A carefully crafted JSON schema could be provided that allows execution of other code by prototype pollution. (While untrusted schemas are recommended against, the worst case of an untrusted schema should be a denial of service, not execution of code.)

CVE-2020-15366
GHSA-v88g-cgmw-v5xw

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T09:31:46.617466+00:00	Debian Importer	Fixing	VCID-kh5k-ynnf-2bbx	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-11T18:21:14.036712+00:00	Debian Importer	Fixing	VCID-kh5k-ynnf-2bbx	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-08T03:37:23.182751+00:00	Debian Importer	Fixing	VCID-1znw-5dwm-7ydy	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-08T03:37:23.138680+00:00	Debian Importer	Fixing	VCID-kh5k-ynnf-2bbx	https://security-tracker.debian.org/tracker/data/json	38.1.0