Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/05/08 8:21 p.m.10 views

CVE-2025-63705

NPM package node-ts-ocr 1.0.15 is vulnerable to OS Command Injection via the invokeImageOcr function in src/index.js...

8.8CVSS5.8AI score0.01185EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2026/05/07 3:38 p.m.5 views

stats-fr-emarque-basketball-extractor (>=1.0.0 <=1.0.2) potentially affected by CVE-2025-63705 via node-ts-ocr (=1.0.15)

node-ts-ocr NPM version =1.0.15 is affected by a known vulnerability. The following packages have a transitive dependency on node-ts-ocr and may be impacted: - stats-fr-emarque-basketball-extractor =1.0.0, =1.0.2 Source cves: CVE-2025-63705 Source advisory: OSV:GHSA-8JH2-3MW6-6PFM...

8.8CVSS5.8AI score0.01185EPSS
Exploits0
NVD
NVD
added 2026/05/07 3:16 p.m.11 views

CVE-2025-63705

NPM package node-ts-ocr 1.0.15 is vulnerable to OS Command Injection via the invokeImageOcr function in src/index.js...

8.8CVSS0.01185EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/07 12:0 a.m.8 views

CVE-2025-63705

NPM package node-ts-ocr 1.0.15 is vulnerable to OS Command Injection via the invokeImageOcr function in src/index.js...

5.8AI score0.01185EPSS
Exploits0References2
CVE
CVE
added 2026/05/07 12:0 a.m.13 views

CVE-2025-63705

The CVE-2025-63705 entry concerns the NPM package node-ts-ocr version 1.0.15, with a reported OS Command Injection via the invokeImageOcr function in src/index.js. The vulnerability is described as enabling arbitrary command execution with a network attack vector, as indicated by the CVSS 3.1 met...

8.8CVSS5.8AI score0.01185EPSS
Exploits0References2
Rows per page
Query Builder