Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Bower Subscribe
Filtered by product Bower
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-5484 1 Bower 1 Bower 2023-02-28 5.0 MEDIUM 7.5 HIGH
Bower before 1.8.8 has a path traversal vulnerability permitting file write in arbitrary locations via install command, which allows attackers to write arbitrary files when a malicious package is extracted.