Vulnerabilities > Netapp > Next Generation Application Programming Interface > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-11-13 CVE-2021-43616 Insufficient Verification of Data Authenticity vulnerability in multiple products
The npm ci command in npm 7.x and 8.x through 8.1.3 proceeds with an installation even if dependency information in package-lock.json differs from package.json.
network
low complexity
npmjs netapp fedoraproject CWE-345
critical
9.8