Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:41 a.m.9 views

CVE-2024-1899

An issue in the anchors subparser of Showdownjs versions = 2.1.0 could allow a remote attacker to cause denial of service conditions...

5.3CVSS6.8AI score0.008EPSS
Exploits1References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/15 3:24 a.m.27 views

Security Bulletin: IBM Fusion HCI and IBM Fusion are vulnerable to denial of service due to Node.js, isaacs node-tar, ShowdownJS

Summary IBM Fusion HCI and IBM Fusion's graphical user interface are vulnerable to a denial of service due to Node.js, isaacs node-tar, and ShowdownJS. CVE-2024-4068, CVE-2024-28863, CVE-2024-1899. Vulnerability Details CVEID:CVE-2024-4068 DESCRIPTION: Node.js braces module is vulnerable to a...

7.5CVSS6.8AI score0.01471EPSS
Exploits3Affected Software3
vulnersOsv
vulnersOsv
added 2024/02/26 9:31 p.m.6 views

20mk-utils (>=1.0.0 <=1.0.3), 2d-spirograph (>=1.0.2 <=1.0.4) +2122 more potentially affected by CVE-2024-1899 via showdown (>=0.0.1 <=2.1.0)

showdown NPM version =0.0.1, =1.0.0, =1.0.2, =2.0.4, =1.0.6, =0.1.4, =0.1.4, =0.1.4, =13.351.0, =13.351.0, =7.10.0, =7.10.0, =0.0.3, =0.5.0 - @adalink/spark-chat =1.0.0 and more Source cves: CVE-2024-1899 Source advisory: OSV:GHSA-RMMH-P597-PPVV...

5.3CVSS6AI score0.008EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2024/02/26 6:45 p.m.25 views

CVE-2024-1899 Showdownjs Denial of Service

An issue in the anchors subparser of Showdownjs versions = 2.1.0 could allow a remote attacker to cause denial of service conditions...

5.3CVSS6.8AI score0.008EPSS
Exploits1References1
CVE
CVE
added 2024/02/26 6:45 p.m.171 views

CVE-2024-1899

CVE-2024-1899 affects ShowdownJS (the anchors subparser) where versions

5.3CVSS5.2AI score0.008EPSS
Exploits1References1Affected Software1
vulnersOsv
vulnersOsv
added 2024/02/25 10:0 p.m.5 views

org.webjars.bower:ng-swagger-ui (=0.0.4) potentially affected by CVE-2024-1899 via org.webjars.bower:showdown (=1.7.6)

org.webjars.bower:showdown MAVEN version =1.7.6 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.bower:showdown and may be impacted: - org.webjars.bower:ng-swagger-ui =0.0.4 Source cves: CVE-2024-1899 Source advisory:...

5.3CVSS6AI score0.008EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2024/02/25 10:0 p.m.6 views

org.webjars:angular-markdown-directive (=0.3.0) potentially affected by CVE-2024-1899 via org.webjars:showdown (=0.3.1)

org.webjars:showdown MAVEN version =0.3.1 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars:showdown and may be impacted: - org.webjars:angular-markdown-directive =0.3.0 Source cves: CVE-2024-1899 Source advisory: SNYK:JAVA-ORGWEBJARS-8685134...

5.3CVSS6AI score0.008EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2024/02/25 10:0 p.m.6 views

com.github.linyuzai:concept-plugin-spring-boot-starter (>=2.0.0 <=3.0.0), org.webjars.npm:github-com-showdownjs-ng-showdown (=1.1.0) +3 more potentially affected by CVE-2024-1899 via org.webjars.npm:showdown (>=1.9.1 <=2.1.0)

org.webjars.npm:showdown MAVEN version =1.9.1, =2.0.0, =1.0.2, =1.0.3 - org.webjars.npm:showdown-prism =0.2.0 Source cves: CVE-2024-1899 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-8685132...

5.3CVSS6AI score0.008EPSS
Exploits1
Rows per page
Query Builder