A vulnerability classified as problematic has been found in yarn. Affected is an unknown function. The manipulation leads to untrusted search path.
This vulnerability is traded as CVE-2021-4435. Local access is required to approach this attack. There is no exploit available.
It is recommended to upgrade the affected component.
