{"id":"ROOT-APP-NPM-CVE-2026-1527","summary":"CVE-2026-1527 in @rootio/undici - Patched by Root","details":"Root has patched CVE-2026-1527 in the @rootio/undici package for Root:npm. Multiple fixed versions available.","modified":"2026-04-01T14:29:46.021230Z","published":"2026-04-01T07:11:55Z","upstream":["CVE-2026-1527"],"database_specific":{"distro":"npm","source":"Root","distro_version":""},"affected":[{"package":{"name":"@rootio/undici","ecosystem":"Root:npm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.21.3-root.io.4"},{"fixed":"6.21.3-root.io.5"},{"fixed":"6.19.2-root.io.2"},{"fixed":"7.5.0-root.io.3"},{"fixed":"6.21.2-root.io.3"},{"fixed":"6.21.3-root.io.6"},{"fixed":"6.19.2-root.io.3"},{"fixed":"6.21.2-root.io.4"},{"fixed":"7.5.0-root.io.4"},{"fixed":"6.21.2-root.io.5"},{"fixed":"7.5.0-root.io.5"},{"fixed":"6.21.3-root.io.7"},{"fixed":"6.19.2-root.io.4"},{"fixed":"6.19.2-root.io.5"},{"fixed":"6.19.2-root.io.6"}]}],"database_specific":{"root_patched":true,"total_fixed_versions":15,"all_fixed_versions":["6.21.3-root.io.4","6.21.3-root.io.5","6.19.2-root.io.2","7.5.0-root.io.3","6.21.2-root.io.3","6.21.3-root.io.6","6.19.2-root.io.3","6.21.2-root.io.4","7.5.0-root.io.4","6.21.2-root.io.5","7.5.0-root.io.5","6.21.3-root.io.7","6.19.2-root.io.4","6.19.2-root.io.5","6.19.2-root.io.6"],"upstream_version":"6.19.2-root.io.6","source":"https://api.root.io/external/osv/ROOT-APP-NPM-CVE-2026-1527.json","root_patch_version":""}}],"schema_version":"1.7.5"}