32 matches found
EUVD-2023-1503
Malicious code in bioql PyPI...
EUVD-2022-24664
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2022-1341
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in in bwm-ng v0.6.2. An arbitrary null write exists in getcmdlnoptions function in src/options.c. CVE-2022-1341 Note that Nessus relies ...
SUSE CVE-2023-26129
All versions of the package bwm-ng are vulnerable to Command Injection due to improper input sanitization in the 'check' function in the bwm-ng.js file. Note: To execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code within t...
CVE-2023-26129
All versions of the package bwm-ng are vulnerable to Command Injection due to improper input sanitization in the 'check' function in the bwm-ng.js file. Note: To execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code within t...
conkie (=0.0.1) potentially affected by CVE-2023-26129 via bwm-ng (=0.1.1)
bwm-ng NPM version =0.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on bwm-ng and may be impacted: - conkie =0.0.1 Source cves: CVE-2023-26129 Source advisory: OSV:GHSA-8VW3-VXMJ-H43W...
GHSA-8VW3-VXMJ-H43W bwm-ng vulnerable to command injection
All versions of the package bwm-ng are vulnerable to Command Injection due to improper input sanitization in the 'check' function in the bwm-ng.js file. Note: To execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code within t...
bwm-ng vulnerable to command injection
All versions of the package bwm-ng are vulnerable to Command Injection due to improper input sanitization in the 'check' function in the bwm-ng.js file. Note: To execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code within t...
CVE-2023-26129
All versions of the package bwm-ng are vulnerable to Command Injection due to improper input sanitization in the 'check' function in the bwm-ng.js file. Note: To execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code within t...
CVE-2023-26129
All versions of the package bwm-ng are vulnerable to Command Injection due to improper input sanitization in the 'check' function in the bwm-ng.js file. Note: To execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code within t...
CVE-2023-26129
All versions of the package bwm-ng are vulnerable to Command Injection due to improper input sanitization in the 'check' function in the bwm-ng.js file. Note: To execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code within t...
CVE-2023-26129
All versions of the package bwm-ng are vulnerable to Command Injection due to improper input sanitization in the 'check' function in the bwm-ng.js file. Note: To execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code within t...
CVE-2023-26129
CVE-2023-26129 affects the node package bwm-ng . The vulnerability is a Command Injection due to improper input sanitization in the check function of the bwm-ng.js file. Exploitation requires the attacker to run Node.js code in the target environment (local access); no user interaction is needed ...
PT-2023-20509 · Bwm-Ng · Bwm-Ng
Name of the Vulnerable Software and Affected Versions: bwm-ng affected versions not specified Description: The issue is related to Command Injection due to improper input sanitization in the check function in the bwm-ng.js file. To potentially exploit this, an attacker needs the ability to run...
bwm-ng 命令注入漏洞
bwm-ng is a small and simple console-based real-time network and disk io bandwidth monitor. A security vulnerability exists in bwm-ng that stems from improper input cleanup and is susceptible to command injection attacks...
SUSE CVE-2022-1341
An issue was discovered in in bwm-ng v0.6.2. An arbitrary null write exists in getcmdlnoptions function in src/options.c...
conkie (=0.0.1) potentially affected by CVE-2023-26129 via bwm-ng (=0.1.1)
bwm-ng NPM version =0.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on bwm-ng and may be impacted: - conkie =0.0.1 Source cves: CVE-2023-26129 Source advisory: SNYK:JS-BWMNG-3175876...
Command Injection
Overview Affected versions of this package are vulnerable to Command Injection due to improper input sanitization in the 'check' function in the bwm-ng.js file. Note: To execute the code snippet and potentially exploit the vulnerability, the attacker needs to have the ability to run Node.js code...
CVE-2022-1341
An issue was discovered in in bwm-ng v0.6.2. An arbitrary null write exists in getcmdlnoptions function in src/options.c...
Denial Of Service (DoS)
bwm-ng is vulnerable to denail of service. The vulnerability exists due to an arbitrary null write in getcmdlnoptions function in src/options.c...