Lucene search
GoogleOSV:GHSA-32FW-9WQ8-9X9CHistoryAug 03, 2022 - 12:00 a.m.
node-latex-pdf is susceptible to command injection
2022-08-0300:00:57
Google
osv.dev
10
command injection vulnerability
node-latex-pdf
software
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.003
Percentile
65.2%
A command injection vulnerability affects all versions of the package node-latex-pdf.
Related
cvelist
cvelist
CVE-2020-28433 Command Injection
2022-08-02 13:27:18
nvd
nvd
CVE-2020-28433
2022-08-02 14:15:09
prion
prion
Code injection
2022-08-02 14:15:00
cve
cve
CVE-2020-28433
2022-08-02 14:15:09
veracode
veracode
Command Injection
2022-08-03 09:04:07
github
github
node-latex-pdf is susceptible to command injection
2022-08-03 00:00:57
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.003
Percentile
65.2%
Related for OSV:GHSA-32FW-9WQ8-9X9C