Obsidian Dataview
1 CVEs
product
Monthly
Obsidian Dataview through 0.4.12-hotfix1 allows eval injection. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
RCE
Code Injection
Obsidian Dataview
NVD
GitHub
CVSS 3.1
7.8
EPSS
1.2%
CVE-2021-42057
npm
EPSS 1%
CVSS 7.8
HIGH
POC
PATCH
This Week
Obsidian Dataview through 0.4.12-hotfix1 allows eval injection. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
RCE
Code Injection
Obsidian Dataview
NVD
GitHub