10chars-test (>=1.0.4 <=1.0.34), 12g (>=0.0.16 <=1.0.1) +24912 more potentially affected by CVE-2022-0144 via shelljs (>=0.0.2 <=0.8.4)

shelljs NPM version =0.0.2, =1.0.4, =0.0.16, =1.3.0, =1.0.0, =1.0.2, =1.0.0, =0.0.3, =1.0.0, =1.0.3, =2.11.4, =2.0.0, =2.11.4, =2.13.7 and more Source cves: CVE-2022-0144 Source advisory: OSV:GHSA-4RQ4-32RV-6WP6...

CVE-2022-0144

A flaw was found in the ShellJS library when the scripts used the exec function. Local users on the filesystem could take advantage of this as they can read the stdout of the ShellJS process. This issue discloses sensitive information, leading to privilege escalation. This flaw allows an attacker...

shelljs Access Control Error Vulnerability

shelljs is a portable Windows/Linux/OS X implementation of Unix shell commands based on the Node.js API. A security vulnerability exists in shelljs that stems from improper privilege management and can be exploited by an attacker to gain unauthorized access...

10chars-test (>=1.0.4 <=1.0.34), 12g (>=0.0.16 <=1.0.1) +24912 more potentially affected by unknown CVE via shelljs (>=0.0.2 <=0.8.4)

shelljs NPM version =0.0.2, =1.0.4, =0.0.16, =1.3.0, =1.0.0, =1.0.2, =1.0.0, =0.0.3, =1.0.0, =1.0.3, =2.11.4, =2.0.0, =2.11.4, =2.13.7 and more Source cves: unknown CVE Source advisory: OSV:GHSA-64G7-MVW6-V9QJ...

GHSA-64G7-MVW6-V9QJ Improper Privilege Management in shelljs

Impact Output from the synchronous version of shell.exec may be visible to other users on the same system. You may be affected if you execute shell.exec in multi-user Mac, Linux, or WSL environments, or if you execute shell.exec as the root user. Other shelljs functions including the asynchronous...

Improper Privilege Management in shelljs

Impact Output from the synchronous version of shell.exec may be visible to other users on the same system. You may be affected if you execute shell.exec in multi-user Mac, Linux, or WSL environments, or if you execute shell.exec as the root user. Other shelljs functions including the asynchronous...

Information Disclosure

shelljs is vulnerable to information disclosure. The vulnerability exists in ShellJS exec function of exec.js because the file permissions have not been locked down which allows an attacker to gain access to sensitive information of file system of the running scripts and crash application...

CVE-2022-0144

shelljs is vulnerable to Improper Privilege Management...

CVE-2022-0144

shelljs is vulnerable to Improper Privilege Management...

DEBIAN-CVE-2022-0144

shelljs is vulnerable to Improper Privilege Management...

Input validation

shelljs is vulnerable to Improper Privilege Management...

UBUNTU-CVE-2022-0144

shelljs is vulnerable to Improper Privilege Management...

CVE-2022-0144

shelljs is vulnerable to Improper Privilege Management...

CVE-2022-0144 Improper Privilege Management in shelljs/shelljs

shelljs is vulnerable to Improper Privilege Management...

CVE-2022-0144

shelljs is vulnerable to Improper Privilege Management...

CVE-2022-0144 Improper Privilege Management in shelljs/shelljs

shelljs is vulnerable to Improper Privilege Management...

CVE-2022-0144

CVE-2022-0144 affects the shelljs package. The vulnerability is described as an Improper Privilege Management issue that could enable a local attacker to gain elevated privileges via shelljs usage on a system where the component is present. The vulnerability is local in scope, with local/privileg...

shelljs 安全漏洞

shelljs is a portable Windows/Linux/OS X implementation of Unix shell commands based on the Node.js API. A security vulnerability exists in shelljs that stems from improper privilege management and can be exploited by an attacker to gain unauthorized access...

Improper Privilege Management in shelljs/shelljs

Details If ShellJS scripts running locally are using ShellJS exec function, local users on the filesystem can read the stdout of the running ShellJS process to disclose sensitive information present in the privileged process. This may leak sensitive information present in the privileged process...

PT-2021-7041 · Npm +2 · Shelljs +2

Name of the Vulnerable Software and Affected Versions: shelljs affected versions not specified Description: The issue is related to Improper Privilege Management in the shelljs function exec, which is associated with insufficient access control. Exploitation of this issue may allow an attacker to...