nuxt Code Injection vulnerability · CVE-2023-3224 · GitHub Advisory Database · GitHub

nuxt Code Injection vulnerability

High severity GitHub Reviewed Published Jun 13, 2023 to the GitHub Advisory Database • Updated Aug 8, 2024

Package

nuxt (npm)

Affected versions

>= 3.4.0, < 3.4.3

Patched versions

3.4.3

Description

he Nuxt dev server between versions 3.4.0 and 3.4.3 is vulnerable to code injection when it is exposed publicly.

References

Published by the National Vulnerability Database

Jun 13, 2023

Published to the GitHub Advisory Database Jun 13, 2023

Reviewed Jun 21, 2023

Last updated Aug 8, 2024