-
CVSS Score
-Basic Information
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AIMiggo AIRoot Cause AnalysisThe vulnerability stemmed from improper input sanitization in Markdown processing. The GitHub PR #514 explicitly states: 1) Previous implementation lacked output sanitization, 2) Migration to Pagedown (with built-in sanitizer) resolved the issue, and 3) The original vulnerability required unsanitized Markdown rendering. While exact function names/paths aren't preserved in available data, the architectural context indicates the Markdown rendering function before Pagedown integration was the vulnerable component.
| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| home-assistant-frontend | npm | < 0.57 |