5 matches found
CVE-2017-1001002
math.js before 3.17.0 had an arbitrary code execution in the JavaScript engine. Creating a typed function with JavaScript code in the name could result arbitrary execution...
Elastic Kibana Arbitrary Code Execution Vulnerability - Linux
Kibana version 6.1.0 had an arbitrary code execution vulnerability in the Math.js package SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
2d-topopt (=0.1.0), 3net.js (>=0.0.1 <=0.2.4) +2095 more potentially affected by CVE-2017-1001002 via mathjs (>=0.10.0 <=3.16.5)
mathjs NPM version =0.10.0, =0.0.1, =0.0.2, =3.1.3, =2.6.0, =1.0.0, =1.3.0, =2.0.0, =0.1.0, =5.10.2-alpha.1, =5.10.2-alpha.2, =2.0.0, =4.10.2 and more Source cves: CVE-2017-1001002 Source advisory: OSV:GHSA-VX5C-87QX-CV6C...
CVE-2017-1001002
math.js before 3.17.0 had an arbitrary code execution in the JavaScript engine. Creating a typed function with JavaScript code in the name could result arbitrary execution...
CVE-2017-1001002
math.js before 3.17.0 allows arbitrary code execution in the JavaScript engine by creating a typed function with JavaScript code in the name. The vulnerability affects math.js (and has been referenced in OpenVAS/OSV/NVD entries) and can lead to code execution on affected systems. Affected compone...