Lucene search

Potential Command Injection in shell-quote

🗓️ 18 Feb 2019 23:29:58Reported by GitHub Advisory DatabaseType

Potential Command Injection in shell-quote. Not properly escapes command line argument

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 10
RedhatCVE	CVE-2016-10541	7 Jun 201813:48	–	redhatcve
UbuntuCve	CVE-2016-10541	31 May 201800:00	–	ubuntucve
Cvelist	CVE-2016-10541	31 May 201820:00	–	cvelist
Node.js	Potential Command Injection	16 May 201617:57	–	nodejs
Prion	Code injection	31 May 201820:29	–	prion
OSV	GHSA-QG8P-V9Q4-GH34 Potential Command Injection in shell-quote	18 Feb 201923:58	–	osv
CVE	CVE-2016-10541	31 May 201820:29	–	cve
Debian CVE	CVE-2016-10541	31 May 201820:29	–	debiancve
NVD	CVE-2016-10541	31 May 201820:29	–	nvd
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities found on thirdparty libraries used by IBM® MobileFirst Platform	26 Jan 202317:01	–	ibm

Vulners

Node

shell-quote_project shell-quoteRange<1.6.1

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2016-10541
github	www.github.com/advisories/GHSA-qg8p-v9q4-gh34
npmjs	www.npmjs.com/advisories/117

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

18 Feb 2019 23:58Current

3Low risk

Vulners AI Score3

CVSS27.5

CVSS39.8

EPSS0.00418