Vulnerabilities > Diagrams > Drawio > 19.0.1

DATE CVE VULNERABILITY TITLE RISK
2022-09-02 CVE-2022-3065 Unspecified vulnerability in Diagrams Drawio
Improper Access Control in GitHub repository jgraph/drawio prior to 20.2.8.
network
low complexity
diagrams
7.5
7.5
2022-06-09 CVE-2022-2014 Code Injection vulnerability in Diagrams Drawio
Code Injection in GitHub repository jgraph/drawio prior to 19.0.2.
network
low complexity
diagrams CWE-94
5.4
5.4
2022-06-09 CVE-2022-2015 Cross-site Scripting vulnerability in Diagrams Drawio
Cross-site Scripting (XSS) - Stored in GitHub repository jgraph/drawio prior to 19.0.2.
network
low complexity
diagrams CWE-79
5.4
5.4