This repository has been archived by the owner on Dec 17, 2022. It is now read-only.

同学，您这个项目引入了1098个开源组件，存在7个漏洞，辛苦升级一下 #2

Open

dependasec bot opened this issue Mar 14, 2022 · 0 comments

dependasec bot commented Mar 14, 2022

检测到 Seidko/Novel-Manager-Electron 一共引入了1098个开源组件，存在7个漏洞

漏洞标题：Google Chrome堆缓冲区溢出漏洞
缺陷组件：[email protected]
漏洞编号：CVE-2021-37981
漏洞描述：Chrome是由Google开发的一款Web浏览工具。
											
												Google Chrome 95.0.4638.54之前版本中的Skia存在堆缓冲区溢出漏洞。远程攻击者可利用该漏洞能通过精心制作的HTML页面执行沙箱逃逸。
国家漏洞库信息：https://www.cnvd.org.cn/flaw/show/CNVD-2021-84815
影响范围：[15.0.0, 15.3.1)
最小修复版本：15.3.1
缺陷组件引入路径：[email protected]>[email protected]

另外还有7个漏洞，详细报告：https://mofeisec.com/jr?p=a7a0dd

The text was updated successfully, but these errors were encountered:

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.