CVE-2022-29256P4MEDIUMCVSS 6.7fixed in 0.30.52022-05-25
CVE-2022-29256 [MEDIUM] CWE-77 CVE-2022-29256: sharp is an application for Node.js image processing. Prior to version 0.30.5, there is a possible v
sharp is an application for Node.js image processing. Prior to version 0.30.5, there is a possible vulnerability in logic that is run only at `npm install` time when installing versions of `sharp` prior to the latest v0.30.5. If an attacker has the ability to set the value of the `PKG_CONFIG_PATH` environment variable in a build environment then they
nvd