Описание
A command inject vulnerability allows an attacker to perform command injection on Windows applications that indirectly depend on the CreateProcess function when the specific conditions are satisfied.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| nodejs | not-affected | package |
EPSS
Процентиль: 86%
0.0303
Низкий
Связанные уязвимости
CVSS3: 9.8
nvd
больше 1 года назад
A command inject vulnerability allows an attacker to perform command injection on Windows applications that indirectly depend on the CreateProcess function when the specific conditions are satisfied.
CVSS3: 9.8
github
больше 1 года назад
A command inject vulnerability allows an attacker to perform command injection on Windows applications that indirectly depend on the CreateProcess function when the specific conditions are satisfied.
EPSS
Процентиль: 86%
0.0303
Низкий