CVE-2017-5941 in node-serialize Package정보

요약

\~에 의해 MITRE

An issue was discovered in the node-serialize package 0.0.4 for Node.js. Untrusted data passed into the unserialize() function can be exploited to achieve arbitrary code execution by passing a JavaScript Object with an Immediately Invoked Function Expression (IIFE).

If you want to get best quality of vulnerability data, you may have to visit VulDB.

출처

Want to know what is going to be exploited?

We predict KEV entries!