6 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-24959
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - zx is a tool for writing better scripts. An attacker with control over environment variable values can inject unintended environment variables into process.env...
CVE-2025-24959
zx is a tool for writing better scripts. An attacker with control over environment variable values can inject unintended environment variables into process.env. This can lead to arbitrary command execution or unexpected behavior in applications that rely on environment variables for...
CVE-2025-24959
creationtimestamp| type| source ---|---|--- 2025-02-03 21:08:24+00:00| seen| https://infosec.exchange/users/cve/statuses/113941997439072239 2025-02-03 21:16:02+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhchn6jt5r2r 2025-02-03 22:08:28+00:00| seen|...
CVE-2025-24959 Environment Variable Injection for dotenv API in zx
zx is a tool for writing better scripts. An attacker with control over environment variable values can inject unintended environment variables into process.env. This can lead to arbitrary command execution or unexpected behavior in applications that rely on environment variables for...
CVE-2025-24959 Environment Variable Injection for dotenv API in zx
zx is a tool for writing better scripts. An attacker with control over environment variable values can inject unintended environment variables into process.env. This can lead to arbitrary command execution or unexpected behavior in applications that rely on environment variables for...
CVE-2025-24959 Environment Variable Injection for dotenv API in zx
zx is a tool for writing better scripts. An attacker with control over environment variable values can inject unintended environment variables into process.env. This can lead to arbitrary command execution or unexpected behavior in applications that rely on environment variables for...