5 matches found
CVE-2017-1000220
creationtimestamp| type| source ---|---|--- 2022-05-13 01:41:00+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-h2p3-h48h-9jj7...
CVE-2017-1000220
soyuka/pidusage =1.1.4 is vulnerable to command injection in the module resulting in arbitrary command execution...
CVE-2017-1000220
soyuka/pidusage =1.1.4 is vulnerable to command injection in the module resulting in arbitrary command execution...
CVE-2017-1000220
soyuka/pidusage =1.1.4 is vulnerable to command injection in the module resulting in arbitrary command execution...
CVE-2017-1000220
The CVE-2017-1000220 entry concerns the pidusage library (version ≤ 1.1.4). The connected sources confirm that pidusage passes unsanitized input to child_process.exec(), enabling arbitrary command execution (command injection) in the ps-related functionality. Affected platforms include Darwin, Su...