Lucene search
K

4 matches found

OSV
OSV
added 2025/03/27 2:15 p.m.4 views

DEBIAN-CVE-2025-26619

Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs. In vega 5.30.0 and lower and in vega-functions 5.15.0 and lower , it was possible to call JavaScript functions from the Vega expression language that were not meant to be...

6.1CVSS5.9AI score0.00324EPSS
Exploits1References1
NVD
NVD
added 2025/03/27 2:15 p.m.50 views

CVE-2025-26619

Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs. In vega 5.30.0 and lower and in vega-functions 5.15.0 and lower , it was possible to call JavaScript functions from the Vega expression language that were not meant to be...

6.1CVSS0.00324EPSS
Exploits1References4
OSV
OSV
added 2025/03/27 2:15 p.m.2 views

UBUNTU-CVE-2025-26619

Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs. In vega 5.30.0 and lower and in vega-functions 5.15.0 and lower , it was possible to call JavaScript functions from the Vega expression language that were not meant to be...

6.1CVSS7.4AI score0.00324EPSS
Exploits1References6
CVE
CVE
added 2025/03/27 1:51 p.m.73 views

CVE-2025-26619

Vega (Node) and Vega‑functions prior to versions 5.31.0/5.16.0 allow calling JavaScript functions from the Vega expression language that were not meant to be supported. This is the CVE-2025-26619 issue; the root cause is exposure of arbitrary JS execution through the expression interpreter. The v...

6.1CVSS6.9AI score0.00324EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder