MidnightBSD

Advisories for yank-note

CVE-2023-31874

Yank Note (YN) 3.52.1 allows execution of arbitrary code when a crafted file is opened, e.g., via nodeRequire('child_process').

Products Affected

Vendor Product Version
yank-note yank_note 3.52.1