Bwm Ng Project

bwm-ng_project

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Bwm Ng

bwm-ng

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-26129 1Bwm Ng Project 1Bwm Ng Jun 17, 2026 May 27, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 All versions of the package bwm-ng are vulnerable to Command Injection due to improper input sanitization in the 'check' function in the bwm-ng.js file. Note: To execute the code snippet and potentially exploit th...Show more All versions of the package bwm-ng are vulnerable to Command Injection due to improper input sanitization in the 'check' function in the bwm-ng.js file. Note: To execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code within the target environment. This typically requires some level of access to the system or application hosting the Node.js environment.Show less
CVE-2022-1341 1Bwm Ng Project 1Bwm Ng Jun 17, 2026 Apr 18, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in in bwm-ng v0.6.2. An arbitrary null write exists in get_cmdln_options() function in src/options.c.

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2023-26129

1Bwm Ng Project

1Bwm Ng

Jun 17, 2026

May 27, 2023

N/A· v4

7.8 HIGH· v3

N/A· v2

All versions of the package bwm-ng are vulnerable to Command Injection due to improper input sanitization in the 'check' function in the bwm-ng.js file. **Note:** To execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code within the target environment. This typically requires some level of access to the system or application hosting the Node.js environment.Show less

CVE-2022-1341

1Bwm Ng Project

1Bwm Ng

Jun 17, 2026

Apr 18, 2022

N/A· v4

7.5 HIGH· v3

5.0 MEDIUM· v2

An issue was discovered in in bwm-ng v0.6.2. An arbitrary null write exists in get_cmdln_options() function in src/options.c.