Количество 2
Количество 2
CVE-2020-11079
больше 5 лет назад
node-dns-sync (npm module dns-sync) through 0.2.0 allows execution of arbitrary commands . This issue may lead to remote code execution if a client of the library calls the vulnerable method with untrusted input. This has been fixed in 0.2.1.
CVSS3: 8.6
EPSS: Низкий
GHSA-wh69-wc6q-7888
больше 5 лет назад
Command injection in node-dns-sync
CVSS3: 8.6
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-11079 node-dns-sync (npm module dns-sync) through 0.2.0 allows execution of arbitrary commands . This issue may lead to remote code execution if a client of the library calls the vulnerable method with untrusted input. This has been fixed in 0.2.1. | CVSS3: 8.6 | 6% Низкий | больше 5 лет назад |
| GHSA-wh69-wc6q-7888 Command injection in node-dns-sync | CVSS3: 8.6 | 6% Низкий | больше 5 лет назад |
Уязвимостей на страницу
20