Vulnerabilities > Diagrams > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-07-27 CVE-2023-3974 Unspecified vulnerability in Diagrams Drawio
OS Command Injection in GitHub repository jgraph/drawio prior to 21.4.0.
network
low complexity
diagrams
critical
 9.8
9.8
2023-07-27 CVE-2023-3975 Unspecified vulnerability in Diagrams Drawio
OS Command Injection in GitHub repository jgraph/drawio prior to 21.5.0.
network
low complexity
diagrams
critical
 9.8
9.8
2022-05-05 CVE-2022-1575 Cross-site Scripting vulnerability in Diagrams Drawio
Arbitrary Code Execution through Sanitizer Bypass in GitHub repository jgraph/drawio prior to 18.0.0.
network
low complexity
diagrams CWE-79
critical
 9.6
9.6