Lucene search

CVE-2016-10595

🗓️ 01 Jun 2018 18:00:29Reported by [email protected]Type

jdf-sass is vulnerable to remote code execution (RCE) due to downloading executable resources over HTT

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
Node.js	Downloads Resources over HTTP	1 Dec 201600:46	–	nodejs
Github Security Blog	jdf-sass downloads Resources over HTTP	18 Feb 201923:34	–	github
Prion	Remote code execution	1 Jun 201818:29	–	prion
Cvelist	CVE-2016-10595	1 Jun 201818:00	–	cvelist
OSV	GHSA-8CC8-8VVX-FHGW jdf-sass downloads Resources over HTTP	18 Feb 201923:34	–	osv
Veracode	Man-in-the-Middle (MitM)	4 Jun 201807:48	–	veracode
CVE	CVE-2016-10595	1 Jun 201818:29	–	cve

Nvd

Node

jdf-sass_project jdf-sassRange≤1.0.18node.js

Source	Link
nodesecurity	www.nodesecurity.io/advisories/198

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

01 Jun 2018 18:29Current

8.3High risk

Vulners AI Score8.3

CVSS29.3

CVSS38.1

EPSS0.00774