CVE-2014-7192 in Node.jsالمعلومات

الملخص

بحسب MITRE

Eval injection vulnerability in index.js in the syntax-error package before 1.1.1 for Node.js 0.10.x, as used in IBM Rational Application Developer and other products, allows remote attackers to execute arbitrary code via a crafted file.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

حجز

26/09/2014

إفشاء

11/12/2014

الاعتدال

تمت الموافقة

إدخال

VDB-67717

استغلال

تحميل

EPSS

0.13441

KEV

لا

النشاطات

منخفض جدًا

المصادر

Want to stay up to date on a daily basis?

Enable the mail alert feature now!