DEV Community

rajdeepmca04
rajdeepmca04

Posted on

1

Vulnerability List in React Packages encountered while Building up React Application

Below vulnerabilities found in React application even i am using react-dev-utils v 11.0.4 could you suggest if those vulnerabilities resolved by react org?:

STATUS | PUBLISHED | DISCOVERED | GRACE DAYS
immer | CVE-2021-23436 | 8.0.1 | fixed in 9.0.6
set-value | CVE-2021-23440 | high | fixed in 4.0.1

serialize-javascript | CVE-2020-7660 | high | fixed in 3.1.0

glob-parent | CVE-2020-28469 | high | fixed in 5.1.2

object-path | CVE-2020-15256 | high | fixed in 0.11.5

python | CVE-2021-28359 | medium | fixed in 3.6.13

postcss | CVE-2021-23382 | medium | fixed in 8.2.13

react-dev-utils | CVE-2021-24033 | moderate | fixed in 11.0.4

object-path | CVE-2021-23434 | moderate | fixed in 0.11.
browserslist | CVE-2021-23364 | 4.14.2 | fixed in 4.16.5

node-notifier | CVE-2020-7789 | moderate | fixed in 8.0.1
sockjs | CVE-2020-7693 | moderate | fixed in 0.3.20

yargs-parser | CVE-2020-7608 | moderate | fixed in 5.0.1, 13.1.2, 18.1.2, 15.0.1

AWS Security LIVE!

Join us for AWS Security LIVE!

Discover the future of cloud security. Tune in live for trends, tips, and solutions from AWS and AWS Partners.

Learn More

Top comments (0)

👋 Kindness is contagious

Immerse yourself in a wealth of knowledge with this piece, supported by the inclusive DEV Community—every developer, no matter where they are in their journey, is invited to contribute to our collective wisdom.

A simple “thank you” goes a long way—express your gratitude below in the comments!

Gathering insights enriches our journey on DEV and fortifies our community ties. Did you find this article valuable? Taking a moment to thank the author can have a significant impact.

Okay