CVE-2019-10783 in lsof Moduleالمعلومات

الملخص

بحسب MITRE

All versions including 0.0.4 of lsof npm module are vulnerable to Command Injection. Every exported method used by the package uses the exec function to parse user input.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

03/04/2019

الاعتدال

تمت الموافقة

إدخال

VDB-149516

CPE

جاهز

CWE

CWE-74 (مؤكد)

CVSS

9.8 (NVD)

EPSS

0.03665

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2019-10783
NVD	https://nvd.nist.gov/vuln/detail/CVE-2019-10783
CVE Details	https://www.cvedetails.com/cve/CVE-2019-10783/

التالي ▸نظرة عامة ◂ السابق

Might our Artificial Intelligence support you?

Check our Alexa App!