squirrellyjs squirrelly v9.0.0 and fixed in v.9.0.1 was discovered to contain a code injection vulnerability via the component options.varName.
Metrics
Affected Vendors & Products
References
History
Fri, 23 Aug 2024 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:squirrelly:squirrelly:9.0.0:*:*:*:*:*:*:* | |
Metrics |
ssvc
|
Fri, 23 Aug 2024 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Squirrelly
Squirrelly squirrelly |
|
Weaknesses | CWE-94 | |
CPEs | cpe:2.3:a:squirrelly:squirrelly:9.0.0:*:*:*:*:node.js:*:* | |
Vendors & Products |
Squirrelly
Squirrelly squirrelly |
|
Metrics |
cvssV3_1
|
Wed, 21 Aug 2024 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | squirrellyjs squirrelly v9.0.0 and fixed in v.9.0.1 was discovered to contain a code injection vulnerability via the component options.varName. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-08-21T00:00:00
Updated: 2024-08-23T16:42:42.511Z
Reserved: 2024-07-05T00:00:00
Link: CVE-2024-40453
Vulnrichment
Updated: 2024-08-23T16:42:32.953Z
NVD
Status : Modified
Published: 2024-08-21T17:15:08.100
Modified: 2024-08-23T17:35:05.463
Link: CVE-2024-40453
Redhat
No data.