Security Advisory

CVE-2021-23631

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-01-21 20:05:23

Last updated 2024-09-16 18:07:59

Assigner snyk

State PUBLISHED

Description

This affects all versions of package convert-svg-core; all versions of package convert-svg-to-png; all versions of package convert-svg-to-jpeg. Using a specially crafted SVG file, an attacker could read arbitrary files from the file system and then show the file content as a converted PNG file.

← Browse all CVEs View on cve.org ↗