Lucene search

CVE-2016-10593

🗓️ 29 May 2018 20:01:29Reported by hackeroneType

ibapi for NodeJS vulnerable to remote code executio

Reporter	Title	Published	Views	Family All 7
Node.js	Downloads Resources over HTTP	30 Nov 201622:44	–	nodejs
Veracode	Man-in-the-Middle(MitM)	30 May 201806:40	–	veracode
Prion	Remote code execution	29 May 201820:29	–	prion
NVD	CVE-2016-10593	29 May 201820:29	–	nvd
Github Security Blog	ibapi downloads Resources over HTTP	18 Feb 201923:34	–	github
OSV	ibapi downloads Resources over HTTP	18 Feb 201923:34	–	osv
Cvelist	CVE-2016-10593	29 May 201820:00	–	cvelist

Nvd

Node

interactivebrokers ibapiRange≤2.4.2node.js

[
  {
    "product": "ibapi node module",
    "vendor": "HackerOne",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ]
  }
]

Source	Link
gitlord	www.gitlord.com/commitdiff/~dchem%2Fnode-ibapi-addon.git/c00dd7c98cca0423052148337e523eeb7776da68
gitlord	www.gitlord.com/summary/~dchem%2Fnode-ibapi-addon.git
npmjs	www.npmjs.com/package/ibapi/v/2.5.6
nodesecurity	www.nodesecurity.io/advisories/182

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

29 May 2018 20:29Current

8.3High risk

Vulners AI Score8.3

CVSS29.3

CVSS38.1

EPSS0.01308