CVE-2019-10783 in lsof Modulethông tin

Tóm tắt

Bởi MITRE

All versions including 0.0.4 of lsof npm module are vulnerable to Command Injection. Every exported method used by the package uses the exec function to parse user input.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Đặt trước

03/04/2019

Kiểm duyệt

được chấp nhận

mục

VDB-149516

CPE

sẵn sàng

CWE

CWE-74 (Đã xác nhận)

CVSS

9.8 (NVD)

EPSS

0.03665

KEV

không

Các hoạt động

rất thấp

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2019-10783
NVD	https://nvd.nist.gov/vuln/detail/CVE-2019-10783
CVE Details	https://www.cvedetails.com/cve/CVE-2019-10783/

◂ Trước Tổng Quan Tiếp theo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!