๐Ÿ” CVE Alert

CVE-2023-3224

HIGH 8.1

Code Injection in nuxt/nuxt

CVSS Score
8.1
EPSS Score
0.0%
EPSS Percentile
0th

Code Injection in GitHub repository nuxt/nuxt prior to 3.5.3.

CWE CWE-94
Vendor nuxt
Product nuxt/nuxt
Published Jun 13, 2023
Last Updated Jan 3, 2025
Stay Ahead of the Next One

Get instant alerts for nuxt nuxt/nuxt

Be the first to know when new high vulnerabilities affecting nuxt nuxt/nuxt are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Versions

nuxt / nuxt/nuxt
unspecified < 3.5.3

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
huntr.dev: https://huntr.dev/bounties/1eb74fd8-0258-4c1f-a904-83b52e373a87 github.com: https://github.com/nuxt/nuxt/commit/65a8f4eb3ef1b249a95fd59e323835a96428baff