Vulnerability in Cap-js @Cap-js/postgres
CVE-2026-46421
The SAP Cloud Application Programming Model is a tool for building enterprise-grade cloud applications, and cap-js/cds-dbs is the monorepo for SQL database services for that tool. On April 29, 2026, compromised versions of `@cap-js/sqlite@…
Affected products
- Cap-js @Cap-js/postgres — versions = 2.2.2
- Cap-js @Cap-js/sqlite — versions = 2.2.2
- @Cap-js/db-service — versions = 2.10.1
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)
- security-advisories@github.com (x_refsource_MISC)
- security-advisories@github.com (x_refsource_MISC)
- security-advisories@github.com (x_refsource_MISC)