CVE-2021-28834 Blast Radius

CRITICAL • CVSS 9.8Kramdown before 2.3.1 does not restrict Rouge formatters to the Rouge::Formatters namespace, and thus arbitrary classes can be instantiated.

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2021-28834.

Start Free Scan →← Back to CVE-2021-28834