4 matches found
ROOT-APP-NPM-CVE-2026-41672 CVE-2026-41672 in @rootio/xmldom__xmldom - Patched by Root
Root has patched CVE-2026-41672 in the @rootio/xmldomxmldom package for Root:npm. Multiple fixed versions available...
CVE-2026-41672 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce-fips, arangodb, sqlpad, npm, saf, gitlab-rails-ce, actions-runner, wazuh-dashboard, wazuh-dashboard-fips, librechat...
2c2p-integration (>=0.2.0 <=0.2.2), 4help-shared (>=1.0.8 <=1.0.15) +4860 more potentially affected by CVE-2026-41672 via @xmldom/xmldom (>=0.7.0 <=0.8.12)
@xmldom/xmldom NPM version =0.7.0, =0.2.0, =1.0.8, =0.1.3, =0.0.7, =0.3.31, =0.1.3, =1.0.4, =1.0.0, =1.2.13 and more Source cves: CVE-2026-41672 Source advisory: OSV:GHSA-J759-J44W-7FR8...
@headspinio/appium-roku-driver (>=2.6.1 <=2.7.0), @natlibfi/passport-melinda-aleph (=3.0.3-alpha.1) +2 more potentially affected by CVE-2026-41672 via @xmldom/xmldom (=0.9.0)
@xmldom/xmldom NPM version =0.9.0 is affected by a known vulnerability. The following packages have a transitive dependency on @xmldom/xmldom and may be impacted: - @headspinio/appium-roku-driver =2.6.1, =3.0.0, =1.7.9-beta.3, =1.8.0-beta.2 Source cves: CVE-2026-41672 Source advisory:...