CVE Vulnerabilities

CVE-2022-25765

Published: Sep 09, 2022 | Modified: Nov 21, 2024
CVSS 3.x
9.8
CRITICAL
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sanitized.

Affected Software

Name Vendor Start Version End Version
Pdfkit Pdfkit_project 0.0.0 (including) *

References