Every CVE whose affected-product data names Github Cmark-gfm, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2024-22051 — CVSS 9.8 (critical): CommonMarker versions prior to 0.23.4 are at risk of an integer overflow vulnerability. This vulnerability can result in possibly…
CVE-2022-24724 — CVSS 8.8 (high): cmark-gfm is GitHub's extended version of the C reference implementation of CommonMark. Prior to versions 0.29.0.gfm.3 and 0.28.3.gfm.21…
CVE-2022-39209 — CVSS 7.5 (high): cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. In versions prior to 0.29.0.gfm.6 a…
CVE-2023-37463 — CVSS 6.4 (medium): cmark-gfm is an extended version of the C reference implementation of CommonMark, a rationalized version of Markdown syntax with a spec…
CVE-2023-24824 — CVSS 5.3 (medium): cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. A polynomial time complexity issue in…
CVE-2023-22485 — CVSS 5.3 (medium): cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. In versions prior 0.29.0.gfm.7, a crafted…
CVE-2023-26485 — CVSS 5.3 (medium): cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. A polynomial time complexity issue in…
CVE-2023-22484 — CVSS 3.5 (low): cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. Versions prior to 0.29.0.gfm.7 are…
CVE-2023-22486 — CVSS 3.5 (low): cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. Versions prior to 0.29.0.gfm.7 contain a…
CVE-2023-22483 — CVSS 3.5 (low): cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. Versions prior to 0.29.0.gfm.7 are…