All 4 CVE vulnerabilities found in quill, with AI-generated Chinese analysis, references, and POCs.
Vendor: Slab
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-31961 | Unbounded memory allocation in Quill via unvalidated size fields in Mach-O binary parsing CWE-770 | 5.5 | Medium | 2026-03-11 |
| CVE-2026-31960 | DoS in Quill via unbounded read of HTTP response body during notarization CWE-770 | 5.3 | Medium | 2026-03-11 |
| CVE-2026-31959 | SSRF in Quill via unvalidated URL from Apple notarization log retrieval CWE-918 | 5.3 | Medium | 2026-03-11 |
| CVE-2025-15056 | Quill 2.0.3 - Lack of data validation in HTML export allowing XSS CWE-79 | 6.1AI | MediumAI | 2026-01-13 |
All 4 known CVE vulnerabilities affecting quill with full Chinese analysis, references, and POCs where available.