AIKIDO-2024-10551

vant is vulnerable to Malicious Code

100

Critical

vant JS

AIKIDO-2024-10551: vant is vulnerable to Malicious Code in versions 2.13.3 - 2.13.5, 3.6.13 - 3.6.15 and 4.9.11 - 4.9.14.

Malicious Code
Vuln in 2.13.3 - 2.13.5
Fixed in 2.13.6
Vuln in 3.6.13 - 3.6.15
Fixed in 3.6.16
Vuln in 4.9.11 - 4.9.14
Fixed in 4.9.15
No CVE available
TL;DR

Who does this affect?

How can it be fixed?

Background info

Link to vendor website

Logo
ยฉ 2024 Aikido Security BV | BE0792914919
๐Ÿ‡ช๐Ÿ‡บ Registered address: Coupure Rechts 88, 9000, Ghent, Belgium
๐Ÿ‡ช๐Ÿ‡บ Office address: Gebroeders van Eyckstraat 2, 9000, Ghent, Belgium
๐Ÿ‡บ๐Ÿ‡ธ Office address: 95 Third St, 2nd Fl, San Francisco, CA 94103, US
Any use of the intel.aikido.dev website and content is explicitly subject to Aikido Terms of Use