What is the CVSS score of CVE-2026-33418?

CVE-2026-33418 has a CVSS 3.1 base score of 7.5 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. EPSS exploitation probability: 0.0%.

Which versions of Node.js are affected by CVE-2026-33418?

A high-severity vulnerability in the @dicebear/converter npm package enables attackers to cause denial of service attacks against applications processing untrusted SVG files, potentially disrupting…. A patch is available.

Node.js CVE-2026-33418

Q: How to fix or mitigate CVE-2026-33418?

Within 24 hours: inventory all applications using @dicebear/converter and assess whether they process untrusted user-supplied SVG input; immediately restrict or disable SVG processing features if possible. Within 7 days: implement input validation, size limits, and resource quotas; deploy WAF rules to detect regex bypass patterns; consider migrating to alternative libraries or forking the package with sanitization fixes. Within 30 days: establish vendor communication protocol for patch notifications; conduct code review of SVG handling logic; implement comprehensive monitoring for memory exhaustion attacks and service degradation.

HIGH

Incorrect Regular Expression (CWE-185)

2026-03-20 https://github.com/dicebear/dicebear

GHSA-7j2x-32w6-p43p

Denial Of Service Node.js

7.5

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Lifecycle Timeline

Patch released

Mar 31, 2026 - 21:13 nvd

Patch available

Analysis Generated

Mar 20, 2026 - 20:46 vuln.today

CVE Published

Mar 20, 2026 - 20:35 nvd

HIGH 7.5

Blast Radius

ecosystem impact

† from your stack dependencies † transitive graph · vuln.today resolves 4-path depth

19 npm packages depend on @dicebear/converter (2 direct, 18 indirect)

Ecosystem-wide dependent count for version 9.4.2.

DescriptionNVD

Summary

The ensureSize() function in @dicebear/converter used a regex-based approach to rewrite SVG width/height attributes, capping them at 2048px to prevent denial of service. This size capping could be bypassed by crafting SVG input that causes the regex to match a non-functional occurrence of <svg before the actual SVG root element. When the SVG is subsequently rendered via @resvg/resvg-js on the Node.js code path, it renders at the attacker-specified dimensions, potentially causing out-of-memory crashes.

Details

The vulnerable function used String.prototype.replace() with a non-global regex to find and rewrite the first <svg tag's dimensions. Since the regex does not distinguish between <svg appearing inside non-element XML constructs and the actual SVG root element, a crafted input can cause the regex to match a decoy instead of the real element, leaving the actual SVG dimensions unclamped.

In the Node.js rendering path, renderAsync from @resvg/resvg-js was called without a fitTo constraint, so it would render at whatever dimensions the SVG element specified - potentially allocating gigabytes of memory.

The browser code path is not vulnerable because it uses the clamped size return value from ensureSize() to set canvas.width and canvas.height directly.

Impact

Any application that passes untrusted or user-supplied SVG content through @dicebear/converter's Node.js conversion functions (toPng, toJpeg, toWebp, toAvif) is vulnerable to denial of service via excessive memory allocation. Note that @dicebear/converter can be used independently of DiceBear's avatar generation - any SVG string can be passed to the conversion functions.

The impact is limited to availability - there is no data disclosure or integrity impact. The browser code path is not affected.

Fix

The regex-based approach has been replaced with XML-aware processing using fast-xml-parser to correctly identify and modify the SVG root element's attributes. Additionally, a fitTo constraint has been added to the renderAsync call as defense-in-depth, ensuring the rendered output is always bounded regardless of SVG content.

AnalysisAI

A regex-based bypass vulnerability in the @dicebear/converter npm package allows attackers to circumvent SVG dimension sanitization by injecting decoy <svg tags in XML constructs. Applications using @dicebear/converter on Node.js to process untrusted SVG input are vulnerable to denial of service through unbounded memory allocation when rendering malformed SVGs. …

RemediationAI

Within 24 hours: inventory all applications using @dicebear/converter and assess whether they process untrusted user-supplied SVG input; immediately restrict or disable SVG processing features if possible. Within 7 days: implement input validation, size limits, and resource quotas; deploy WAF rules to detect regex bypass patterns; consider migrating to alternative libraries or forking the package with sanitization fixes. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-33418 vulnerability details – vuln.today

Back

Node.js CVE-2026-33418

CVSS VectorNVD

Lifecycle Timeline

Blast Radius

DescriptionNVD

Summary

Details

Impact

Fix

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code