Approved changes feed: RSS · Atom
cpe:2.3:a:n/a:bwm-ng:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | N/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78) |
|---|---|
| Product | Bwm Ng (81b0bc8d-425f-53a7-a0fc-524bcac1bae9) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-26129 |
vulnerable | 2026-06-08 05:57:38.676725 |
Details available
HIGH (8.4)
All versions of the package bwm-ng are vulnerable to Command Injection due to improper input sanitization in the 'check' function in the bwm-ng.js file.
**Note:**
To execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code within the target environment. This typically requires some level of access to the system or application hosting the Node.js environment.
Published: 2023-05-27T05:00:01.547Z
Updated: 2025-01-13T21:08:09.689Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-1341 |
vulnerable | 2026-06-08 05:39:12.764632 |
Details available
An issue was discovered in in bwm-ng v0.6.2. An arbitrary null write exists in get_cmdln_options() function in src/options.c.
Published: 2022-04-18T16:20:34.000Z
Updated: 2024-08-03T00:03:06.296Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.