Kujirahand Nadesiko3 vulnerabilities
3 known vulnerabilities affecting kujirahand/nadesiko3.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1
Vulnerabilities
Page 1 of 1
CVE-2022-41642P2CRITICALCVSS 9.8≤ 3.3.68vv3.3.61 and earlier2022-12-05
CVE-2022-41642 [CRITICAL] CWE-78 CVE-2022-41642: OS command injection vulnerability in Nadesiko3 (PC Version) v3.3.61 and earlier allows a remote att
OS command injection vulnerability in Nadesiko3 (PC Version) v3.3.61 and earlier allows a remote attacker to execute an arbitrary OS command when processing compression and decompression on the product.
ghsanvdosv
CVE-2022-42496P2CRITICALCVSS 9.8≤ 3.3.742022-12-05
CVE-2022-42496 [CRITICAL] CWE-78 CVE-2022-42496: OS command injection vulnerability in Nako3edit, editor component of nadesiko3 (PC Version) v3.3.74
OS command injection vulnerability in Nako3edit, editor component of nadesiko3 (PC Version) v3.3.74 and earlier allows a remote attacker to obtain appkey of the product and execute an arbitrary OS command on the product.
ghsanvdosv
CVE-2022-41777P3HIGHCVSS 7.5≤ 3.3.742022-12-05
CVE-2022-41777 [HIGH] CWE-703 CVE-2022-41777: Improper check or handling of exceptional conditions vulnerability in Nako3edit, editor component of
Improper check or handling of exceptional conditions vulnerability in Nako3edit, editor component of nadesiko3 (PC Version) v3.3.74 and earlier allows a remote attacker to inject an invalid value to decodeURIComponent of nako3edit, which may lead the server to crash.
ghsanvdosv