CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Sass-Lang: >> Libsass >> 3.6.0 Security Vulnerabilities

CVE-2019-18797

LibSass 3.6.1 has uncontrolled recursion in Sass::Eval::operator()(Sass::Binary_Expression*) in eval.cpp.

CVSS Score

6.5

EPSS Score

0.003

Published

2019-11-06

CVE-2019-18798

LibSass before 3.6.3 allows a heap-based buffer over-read in Sass::weaveParents in ast_sel_weave.cpp.

CVSS Score

6.5

EPSS Score

0.004

Published

2019-11-06

CVE-2019-18799

LibSass before 3.6.3 allows a NULL pointer dereference in Sass::Parser::parseCompoundSelector in parser_selectors.cpp.

CVSS Score

6.5

EPSS Score

0.004

Published

2019-11-06

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved