@cyclonedx/cdxgen (npm) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package @cyclonedx/cdxgen, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (1)
CVE-2024-50611 — CVSS 7.2 (high): CycloneDX cdxgen through 10.10.7, when run against an untrusted codebase, may execute code contained within build-related files such as…