CVE Watchtower

CVE-2026-42573NVD

Vulnerability Summary

Svelte is a performance oriented web framework. Prior to version 5.55.7, Svelte was vulnerable to DOM clobbering of its internal framework state on elements, potentially leading to XSS attacks. This issue has been patched in version 5.55.7.

Severity Level

UNKNOWN

Published Date

Jun 9, 2026

Last Modified

Jun 9, 2026

Exploitation Status

????

EPSS Score (30-Day)

0.05%Probability

Root Weakness (CWE)

N/A

External References

https://github.com/sveltejs/svelte/security/advisories/GHSA-rcqx-6q8c-2c42
https://github.com/sveltejs/svelte/releases/tag/svelte%405.55.7