Skip to main content

Cube Js

2 CVEs product

Monthly

CVE-2023-50709 npm HIGH PATCH This Week

Cube is a semantic layer for building data applications. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Cube Js
NVD GitHub
CVSS 3.1
7.5
EPSS
0.7%
CVE-2022-23510 npm HIGH PATCH This Week

cube-js is a headless business intelligence platform. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This SQL Injection vulnerability could allow attackers to execute arbitrary SQL commands against the database.

SQLi Cube Js
NVD GitHub
CVSS 3.1
8.8
EPSS
0.9%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Cube is a semantic layer for building data applications. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Cube Js
NVD GitHub
EPSS 1% CVSS 8.8
HIGH PATCH This Week

cube-js is a headless business intelligence platform. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This SQL Injection vulnerability could allow attackers to execute arbitrary SQL commands against the database.

SQLi Cube Js
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy