Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-4QWQ-Q4PR-RR7R
HistoryNov 02, 2021 - 3:42 p.m.

Vulnerability in packageCmd function leads to arbitrary code execution via filePath parameters

2021-11-0215:42:38
Google
osv.dev
9
vulnerability
packagecmd function
arbitrary code execution
filepath parameters
aaptjs
shenzhim

EPSS

0.004

Percentile

72.4%

JSON

aaptjs is a node wraper for aapt. An issue was discovered in the packageCmd function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.

Related

cve 1
veracode 1
nvd 1
cvelist 1
github 1
cnvd 1
prion 1
cve
cve
CVE-2020-36378
2021-10-31 20:15:08
veracode
veracode
Remote Code Execution (RCE)
2021-11-01 04:35:49
nvd
nvd
CVE-2020-36378
2021-10-31 20:15:08
cvelist
cvelist
CVE-2020-36378
2021-10-31 19:51:56
github
github
Vulnerability in packageCmd function leads to arbitrary code execution via filePath parameters
2021-11-02 15:42:38
cnvd
cnvd
aaptjs remote code execution vulnerability (CNVD-2021-84830)
2021-11-01 00:00:00
prion
prion
Code injection
2021-10-31 20:15:00

EPSS

0.004

Percentile

72.4%

JSON
Related for OSV:GHSA-4QWQ-Q4PR-RR7R
cve1veracode1nvd1cvelist1github1cnvd1prion1