Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Deno has --allow-read / --allow-write permission bypass in `node:sqlite`
Vulnerability Description
Deno is a JavaScript, TypeScript, and WebAssembly runtime. Starting in version 2.2.0 and prior to versions 2.2.5, it is possible to bypass Deno's permission read/write db permission check by using `ATTACH DATABASE` statement. Version 2.2.5 contains a patch for the issue.
CVSS Information
N/A
Vulnerability Type
授权机制不正确
Vulnerability Title
Deno 安全漏洞
Vulnerability Description
Deno是Deno开源的一个简单、现代且安全的 JavaScript 和 TypeScript 运行环境。 Deno 2.2.0至2.2.5之前版本存在安全漏洞,该漏洞源于可通过ATTACH DATABASE语句绕过读写权限检查。
CVSS Information
N/A
Vulnerability Type
N/A