Vulnerabilities > Kujirahand > Nadesiko3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-05 | CVE-2022-41642 | OS Command Injection vulnerability in Kujirahand Nadesiko3 OS command injection vulnerability in Nadesiko3 (PC Version) v3.3.61 and earlier allows a remote attacker to execute an arbitrary OS command when processing compression and decompression on the product. | 9.8 |
| 2022-12-05 | CVE-2022-41777 | Unspecified vulnerability in Kujirahand Nadesiko3 Improper check or handling of exceptional conditions vulnerability in Nako3edit, editor component of nadesiko3 (PC Version) v3.3.74 and earlier allows a remote attacker to inject an invalid value to decodeURIComponent of nako3edit, which may lead the server to crash. | 7.5 |
| 2022-12-05 | CVE-2022-42496 | OS Command Injection vulnerability in Kujirahand Nadesiko3 OS command injection vulnerability in Nako3edit, editor component of nadesiko3 (PC Version) v3.3.74 and earlier allows a remote attacker to obtain appkey of the product and execute an arbitrary OS command on the product. | 9.8 |