CVE-2023-29566

Severity CVSS v4.0:
Pending analysis
Type:
CWE-77 Command Injection
Publication date:
24/04/2023
Last modified:
04/02/2025

Description

huedawn-tesseract 0.3.3 and dawnsparks-node-tesseract 0.4.0 to 0.4.1 was discovered to contain a remote code execution (RCE) vulnerability via the child_process function.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:dawnsparks-node-tesseract_project:dawnsparks-node-tesseract:0.4.0:*:*:*:*:node.js:*:*
cpe:2.3:a:dawnsparks-node-tesseract_project:dawnsparks-node-tesseract:0.4.1:*:*:*:*:node.js:*:*
cpe:2.3:a:huedawn-tesseract_project:huedawn-tesseract:0.3.0:*:*:*:*:node.js:*:*