CVE-2023-26107

🗓️ 06 Mar 2023 05:12:15Reported by [email protected]Type

sketchsvg package vulnerable to Arbitrary Code Injection

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
Cvelist	CVE-2023-26107	6 Mar 202305:00	–	cvelist
Prion	Command injection	6 Mar 202305:15	–	prion
Vulnrichment	CVE-2023-26107	6 Mar 202305:00	–	vulnrichment
Veracode	Arbitrary Code Injection	22 Aug 202305:34	–	veracode
OSV	GHSA-6722-XVQ8-3254 SketchSVG Arbitrary Code Injection vulnerability	6 Mar 202306:30	–	osv
CVE	CVE-2023-26107	6 Mar 202305:15	–	cve
Github Security Blog	SketchSVG Arbitrary Code Injection vulnerability	6 Mar 202306:30	–	github

Nvd

Node

ebay sketchsvgMatch-

Source	Link
security	www.security.snyk.io/vuln/SNYK-JS-SKETCHSVG-3167969
github	www.github.com/eBay/SketchSVG/blob/dd1036648f0f320a3187ef79d506b676b9eb87a6/lib/index.js%23L64
github	www.github.com/eBay/SketchSVG/blob/dd1036648f0f320a3187ef79d506b676b9eb87a6/lib/index.js%23L115

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Mar 2023 05:15Current

7.3High risk

Vulners AI Score7.3

CVSS37.8

EPSS0.00054

CWE-94