pkg:npm/@clerk/shared

2 total CVEsCRITICAL1

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.1CVE-2026-41248Official Clerk JavaScript SDKs: Middleware-based route protection bypass
    >= 2.20.17, < 2.22.1
  • CVE-2026-42349Clerk has an authorization bypass when combining organization, billing, or reverification checks
    >= 3.0.0, < 3.47.5