CVE-2023-28154 Blast Radius

CRITICAL • CVSS 9.8Webpack 5 before 5.76.0 does not avoid cross-realm object access. ImportParserPlugin.js mishandles the magic comment feature. An attacker who controls

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2023-28154.

Start Free Scan →← Back to CVE-2023-28154