Vulnerabilities > Sass Lang > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-22 | CVE-2022-26592 | Out-of-bounds Write vulnerability in Sass-Lang Libsass 3.6.5 Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::has_real_parent_ref function. | 8.8 |
| 2023-08-22 | CVE-2022-43357 | Out-of-bounds Write vulnerability in Sass-Lang Libsass and Sassc Stack overflow vulnerability in ast_selectors.cpp in function Sass::CompoundSelector::has_real_parent_ref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service (DoS). | 7.5 |
| 2023-08-22 | CVE-2022-43358 | Out-of-bounds Write vulnerability in Sass-Lang Libsass 3.6.58G210218 Stack overflow vulnerability in ast_selectors.cpp: in function Sass::ComplexSelector::has_placeholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service (DoS). | 7.5 |
| 2018-05-26 | CVE-2018-11499 | Use After Free vulnerability in Sass-Lang Libsass A use-after-free vulnerability exists in handle_error() in sass_context.cpp in LibSass 3.4.x and 3.5.x through 3.5.4 that could be leveraged to cause a denial of service (application crash) or possibly unspecified other impact. | 7.5 |