npm package
@adobe/css-tools
pkg:npm/%40adobe/css-tools
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-48631 | — | < 4.3.2 | 4.3.2 | Dec 14, 2023 | @adobe/css-tools versions 4.3.1 and earlier are affected by an Improper Input Validation vulnerability that could result in a denial of service while attempting to parse CSS. | ||
| CVE-2023-26364 | — | < 4.3.1 | 4.3.1 | Nov 17, 2023 | @adobe/css-tools version 4.3.0 and earlier are affected by an Improper Input Validation vulnerability that could result in a minor denial of service while attempting to parse CSS. Exploitation of this issue does not require user interaction or privileges. |
- CVE-2023-48631Dec 14, 2023affected < 4.3.2fixed 4.3.2
@adobe/css-tools versions 4.3.1 and earlier are affected by an Improper Input Validation vulnerability that could result in a denial of service while attempting to parse CSS.
- CVE-2023-26364Nov 17, 2023affected < 4.3.1fixed 4.3.1
@adobe/css-tools version 4.3.0 and earlier are affected by an Improper Input Validation vulnerability that could result in a minor denial of service while attempting to parse CSS. Exploitation of this issue does not require user interaction or privileges.