nadesiko3

npm3 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting nadesiko3page 1 of 1

CVE-2022-41642CRITICALCVSS 9.8EG 9.8✓ Fixed in 3.3.69
2022-12-05
OS command injection vulnerability in Nadesiko3 (PC Version) v3.3.61 and earlier allows a remote attacker to execute an arbitrary OS command when processing compression and decompression on the product.
CVE-2022-41777HIGHCVSS 7.5EG 7.5✓ Fixed in 3.3.75
2022-12-05
Improper check or handling of exceptional conditions vulnerability in Nako3edit, editor component of nadesiko3 (PC Version) v3.3.74 and earlier allows a remote attacker to inject an invalid value to decodeURIComponent of nako3edit, which m…
CVE-2022-42496CRITICALCVSS 9.8EG 9.8✓ Fixed in 3.3.75
2022-12-05
OS command injection vulnerability in Nako3edit, editor component of nadesiko3 (PC Version) v3.3.74 and earlier allows a remote attacker to obtain appkey of the product and execute an arbitrary OS command on the product.

Check whether nadesiko3 is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for nadesiko3 CVEs against the assets you own.

Start Free Scan →