High severityNVD Advisory· Published Oct 19, 2022· Updated May 8, 2025
CVE-2022-41709
CVE-2022-41709
Description
Markdownify version 1.4.1 allows an external attacker to execute arbitrary code remotely on any client attempting to view a malicious markdown file through Markdownify. This is possible because the application has the "nodeIntegration" option enabled.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
electron-markdownifynpm | <= 1.4.1 | — |
Affected products
2- Markdownify/Markdownifydescription
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.