CVE-2014-9682 in Dns-syncinformation

Résumé

par MITRE

The dns-sync module before 0.1.1 for node.js allows context-dependent attackers to execute arbitrary commands via shell metacharacters in the first argument to the resolve API function.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Réserver

13/02/2015

Divulgation

27/02/2015

Modérer

accepté

Entrée

VDB-74327

CPE

prêt

EPSS

0.02843

KEV

non

Activités

très faible

Sources

Might our Artificial Intelligence support you?

Check our Alexa App!