Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:16 a.m.12 views

CVE-2019-10778

devcert-sanscache before 0.4.7 allows remote attackers to execute arbitrary code or cause a Command Injection via the exec function. The variable commonName controlled by user input is used as part of the exec function without any sanitization...

9.8CVSS8.3AI score0.03453EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2020/04/14 11:9 p.m.5 views

@sap/ui5-builder-webide-extension (=1.0.1), @sersap/ui5-build-tasks (>=0.0.8 <=0.0.13) +7 more potentially affected by CVE-2019-10778 via devcert-sanscache (=0.4.6)

devcert-sanscache NPM version =0.4.6 is affected by a known vulnerability. The following packages have a transitive dependency on devcert-sanscache and may be impacted: - @sap/ui5-builder-webide-extension =1.0.1 - @sersap/ui5-build-tasks =0.0.8, =1.0.0, =1.1.0, =1.0.0, =1.0.0, =2.0.0, =1.0.0,...

9.8CVSS7.2AI score0.03453EPSS
Exploits0
NVD
NVD
added 2020/01/08 4:15 p.m.35 views

CVE-2019-10778

devcert-sanscache before 0.4.7 allows remote attackers to execute arbitrary code or cause a Command Injection via the exec function. The variable commonName controlled by user input is used as part of the exec function without any sanitization...

9.8CVSS9.9AI score0.03453EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/01/08 3:3 p.m.45 views

CVE-2019-10778

devcert-sanscache before 0.4.7 allows remote attackers to execute arbitrary code or cause a Command Injection via the exec function. The variable commonName controlled by user input is used as part of the exec function without any sanitization...

10AI score0.03453EPSS
Exploits0References1
CVE
CVE
added 2020/01/08 3:3 p.m.56 views

CVE-2019-10778

CVE-2019-10778 affects devcert-sanscache prior to 0.4.7. The vulnerability allows a remote attacker to execute arbitrary code or perform command injection because the user-controlled commonName is used inside an exec call without sanitization. Impact is described as remote code execution with pot...

9.8CVSS9.8AI score0.03453EPSS
Exploits0References1Affected Software1
vulnersOsv
vulnersOsv
added 2020/01/08 11:33 a.m.8 views

@sap/ui5-builder-webide-extension (=1.0.1), @sersap/ui5-build-tasks (>=0.0.8 <=0.0.13) +7 more potentially affected by CVE-2019-10778 via devcert-sanscache (=0.4.6)

devcert-sanscache NPM version =0.4.6 is affected by a known vulnerability. The following packages have a transitive dependency on devcert-sanscache and may be impacted: - @sap/ui5-builder-webide-extension =1.0.1 - @sersap/ui5-build-tasks =0.0.8, =1.0.0, =1.1.0, =1.0.0, =1.0.0, =2.0.0, =1.0.0,...

9.8CVSS7.2AI score0.03453EPSS
Exploits0
Rows per page
Query Builder