CVE
CVE-2024-33665
| CVE ID |
CVE-2024-33665
|
|---|---|
| CVSS Score |
NA
|
| Operating System | |
| Affected Versions | |
| Patched Versions |
2.19.2
|
| Patch Date |
|
| Last Updated Date | |
| Vector String |
Additional Information
NVD Listing : NVD - CVE-2024-33665
Bug Fixes
- translate directive: XSS vulnerability fix resolves CVE-2024-33665.
- For missing translation IDs, use the escape strategy if no other is provided. Otherwise, apply the same strategy as for translation values.
- Note about the sanitize and sce modes: For HTML injection, use reliable sanitization libraries like DOMPurify to avoid vulnerabilities similar to those in the AngularJS expression sandbox.