Code injection

2022-04-0511:15:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.8%

easy-mock v1.5.0-v1.6.0 allows remote attackers to bypass the vm2 sandbox and execute arbitrary system commands through special js code.

CPENameOperatorVersion
easy_mockge1.5.0
easy_mockle1.6.0

CPE	Name	Operator	Version
	easy_mock	ge	1.5.0
	easy_mock	le	1.6.0

References

www.exploit-db.com/exploits/50194