Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 2:11 p.m.9 views

CVE-2020-11079

node-dns-sync npm module dns-sync through 0.2.0 allows execution of arbitrary commands . This issue may lead to remote code execution if a client of the library calls the vulnerable method with untrusted input. This has been fixed in 0.2.1...

9.8CVSS7.9AI score0.0262EPSS
Exploits0References1
Circl
Circl
added 2020/05/28 10:55 p.m.4 views

CVE-2020-11079

creationtimestamp| type| source ---|---|--- 2020-05-28 22:55:28+00:00| seen| https://t.me/cibsecurity/12380 2026-06-08 10:21:08+00:00| seen| https://gist.github.com/moizxsec/c42bfada3bf659de639c1c1c2ff88abc...

9.8CVSS7.8AI score0.0262EPSS
Exploits0References2
NVD
NVD
added 2020/05/28 7:15 p.m.23 views

CVE-2020-11079

node-dns-sync npm module dns-sync through 0.2.0 allows execution of arbitrary commands . This issue may lead to remote code execution if a client of the library calls the vulnerable method with untrusted input. This has been fixed in 0.2.1...

9.8CVSS9.4AI score0.0262EPSS
Exploits0References2
OSV
OSV
added 2020/05/28 7:15 p.m.15 views

CVE-2020-11079

node-dns-sync npm module dns-sync through 0.2.0 allows execution of arbitrary commands . This issue may lead to remote code execution if a client of the library calls the vulnerable method with untrusted input. This has been fixed in 0.2.1...

9.8CVSS9.9AI score
Exploits0References2
vulnersOsv
vulnersOsv
added 2020/05/28 6:42 p.m.4 views

@blitzbank/dashboard (>=0.0.1 <=0.0.2), @bloombox/js-client (=1.1.4) +22 more potentially affected by CVE-2020-11079 via dns-sync (=0.1.3)

dns-sync NPM version =0.1.3 is affected by a known vulnerability. The following packages have a transitive dependency on dns-sync and may be impacted: - @blitzbank/dashboard =0.0.1, =0.1.0, =1.0.2, =1.0.1, =1.0.1, =2.2.37, =0.0.1, =0.2.24, =0.0.1, =1.0.0, =2.0.3 and more Source cves: CVE-2020-110...

9.8CVSS7.2AI score0.0262EPSS
Exploits0
Cvelist
Cvelist
added 2020/05/28 6:40 p.m.30 views

CVE-2020-11079 command injection fix in node-dns-sync

node-dns-sync npm module dns-sync through 0.2.0 allows execution of arbitrary commands . This issue may lead to remote code execution if a client of the library calls the vulnerable method with untrusted input. This has been fixed in 0.2.1...

8.6CVSS9.9AI score0.0262EPSS
Exploits0References2
Rows per page
Query Builder