Lucene search
PRIOn knowledge basePRION:CVE-2022-21165HistoryAug 29, 2022 - 5:15 a.m.
Command injection
2022-08-2905:15:00
PRIOn knowledge base
www.prio-n.com
1
font-converter
command injection
arbitrary command injection
input sanitization
nvd
All versions of package font-converter are vulnerable to Arbitrary Command Injection due to missing sanitization of input that potentially flows into the child_process.exec() function.
| CPE | Name | Operator | Version |
|---|---|---|---|
| font_converter | eq | 1.0.0 | |
| font_converter | eq | 1.1.0 | |
| font_converter | eq | 1.1.1 |
Related
nvd
nvd
CVE-2022-21165
2022-08-29 05:15:08
osv
osv
Font-Converter Vulnerable to Arbitrary Command Injection
2022-08-29 20:06:54
veracode
veracode
Remote Code Execution
2022-08-30 06:38:41
cve
cve
CVE-2022-21165
2022-08-29 05:15:08
cvelist
cvelist
CVE-2022-21165 Arbitrary Command Injection
2022-08-29 00:00:00
github
github
Font-Converter Vulnerable to Arbitrary Command Injection
2022-08-29 20:06:54