Lucene search
SnykCVELIST:CVE-2020-7775HistoryFeb 02, 2021 - 6:20 p.m.
CVE-2020-7775 Command Injection
2021-02-0218:20:14
snyk
www.cve.org
2
cve-2020-7775
command injection
freediskspace
improper neutralization
javascript
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P
AI Score
9.6
Confidence
High
EPSS
0.002
Percentile
60.8%
This affects all versions of package freediskspace. The vulnerability arises out of improper neutralization of arguments in line 71 of freediskspace.js.
CNA Affected
[
{
"product": "freediskspace",
"vendor": "n/a",
"versions": [
{
"lessThan": "unspecified",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]Related
prion
prion
Design/Logic Flaw
2021-02-02 19:15:00
nvd
nvd
CVE-2020-7775
2021-02-02 19:15:13
osv
osv
Improper neutralization of arguments in freediskspace
2021-04-13 15:16:11
cve
cve
CVE-2020-7775
2021-02-02 19:15:13
github
github
Improper neutralization of arguments in freediskspace
2021-04-13 15:16:11
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P
AI Score
9.6
Confidence
High
EPSS
0.002
Percentile
60.8%
Related for CVELIST:CVE-2020-7775