Lucene search

CVE-2020-7789

🗓️ 11 Dec 2020 10:12:15Reported by [email protected]Type

Vulnerability in node-notifier allows arbitrary command execution on Linux

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 16
RedhatCVE	CVE-2020-7789	11 Dec 202014:56	–	redhatcve
Veracode	Command Injection	14 Dec 202006:36	–	veracode
CVE	CVE-2020-7789	11 Dec 202010:15	–	cve
OSV	GHSA-5FW9-FQ32-WV5P OS Command Injection in node-notifier	21 Dec 202016:04	–	osv
OSV	CVE-2020-7789	11 Dec 202010:15	–	osv
OSV	RHSA-2021:0781 Red Hat Security Advisory: Red Hat Ansible Automation Platform 1.2.2 security and bug fix update	18 Sep 202404:17	–	osv
Github Security Blog	OS Command Injection in node-notifier	21 Dec 202016:04	–	github
Prion	Design/Logic Flaw	11 Dec 202010:15	–	prion
Cvelist	CVE-2020-7789 Command Injection	11 Dec 202009:55	–	cvelist
IBM Security Bulletins	Security Bulletin: IBM Cognos Analytics has addressed multiple vulnerabilities (CVE-2020-7789, CVE-2020-7598, CVE-2021-44906 , XFID: 216835, XFID: 220063)	24 Mar 202321:04	–	ibm

Nvd

Node

node-notifier_project node-notifierRange<8.0.1node.js

Source	Link
snyk	www.snyk.io/vuln/SNYK-JS-NODENOTIFIER-1035794
github	www.github.com/mikaelbr/node-notifier/blob/master/lib/utils.js%23L303
snyk	www.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1050371

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

11 Dec 2020 10:15Current

7.5High risk

Vulners AI Score7.5

CVSS26.8

CVSS35.6

EPSS0.00165

CWE-78