9 matches found
CVE-2021-4435 vulnerabilities
Vulnerabilities for packages: yarn...
Linux Distros Unpatched Vulnerability : CVE-2021-4435
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An untrusted search path vulnerability was found in Yarn. When a victim runs certain Yarn commands in a directory with attacker-controlled content, malicious...
7ghost-cli (>=1.17.6-next.0 <=1.18.4), @adaptable/client (>=0.0.9 <=1.26.0) +157 more potentially affected by CVE-2021-4435 via yarn (>=0.15.1 <=1.22.11)
yarn NPM version =0.15.1, =1.17.6-next.0, =0.0.9, =0.0.1, =1.6.0, =0.3.0, =0.3.0, =0.3.0, =0.4.0-next.7, =0.3.0, =0.3.0, =1.1.0, =5.6.4, =3.1.264, =3.4.0-dev.1 - @cessair/building =1.0.0 and more Source cves: CVE-2021-4435 Source advisory: OSV:GHSA-MPWJ-FCR6-X34C...
CVE-2021-4435
An untrusted search path vulnerability was found in Yarn. When a victim runs certain Yarn commands in a directory with attacker-controlled content, malicious commands could be executed in unexpected ways...
CVE-2021-4435 Yarn: untrusted search path
An untrusted search path vulnerability was found in Yarn. When a victim runs certain Yarn commands in a directory with attacker-controlled content, malicious commands could be executed in unexpected ways...
CVE-2021-4435 Yarn: untrusted search path
An untrusted search path vulnerability was found in Yarn. When a victim runs certain Yarn commands in a directory with attacker-controlled content, malicious commands could be executed in unexpected ways...
CVE-2021-4435
CVE-2021-4435 describes an untrusted search path vulnerability in Yarn. The issue can allow execution of malicious commands when a victim runs certain Yarn commands in a directory containing attacker-controlled content. Impact details in the NVD entry show a high-severity, local attack with requi...
CVE-2021-4435
An untrusted search path vulnerability was found in Yarn. When a victim runs certain Yarn commands in a directory with attacker-controlled content, malicious commands could be executed in unexpected ways...
CVE-2021-4435
An untrusted search path vulnerability was found in Yarn. When a victim runs certain Yarn commands in a directory with attacker-controlled content, malicious commands could be executed in unexpected ways...