Critical severityNVD Advisory· Published Jun 13, 2023· Updated Jan 3, 2025
Code Injection in nuxt/nuxt
CVE-2023-3224
Description
Code Injection in GitHub repository nuxt/nuxt prior to 3.5.3.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
nuxtnpm | >= 3.4.0, < 3.4.3 | 3.4.3 |
Affected products
2Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-gc34-5v43-h7v8ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2023-3224ghsaADVISORY
- github.com/nuxt/nuxt/commit/65a8f4eb3ef1b249a95fd59e323835a96428baffghsaWEB
- github.com/nuxt/nuxt/commit/72ba53efbc2384f802d654fffd92eaf36a81b507ghsaWEB
- github.com/nuxt/nuxt/commits/v3.4.3ghsaWEB
- github.com/nuxt/nuxt/issues/21694ghsaWEB
- huntr.dev/bounties/1eb74fd8-0258-4c1f-a904-83b52e373a87ghsaWEB
News mentions
0No linked articles in our index yet.