Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:50 a.m.8 views

CVE-2019-10787

im-resize through 2.3.2 allows remote attackers to execute arbitrary commands via the "exec" argument. The cmd argument used within index.js, can be controlled by user without any sanitization...

10CVSS7.9AI score0.03799EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2021/04/13 3:17 p.m.5 views

chhyun-utils (>=1.0.12 <=1.0.39), jotunheimr (>=1.11.0 <=1.12.1) +4 more potentially affected by CVE-2019-10787 via im-resize (>=2.0.2 <=2.3.2)

im-resize NPM version =2.0.2, =1.0.12, =1.11.0, =1.0.0, =0.0.1, =2.0.2, =2.0.3 - wn-s3-uploader =1.0.0 Source cves: CVE-2019-10787 Source advisory: OSV:GHSA-R9VM-RHMF-7HXX...

10CVSS7.2AI score0.03799EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2020/06/11 4:21 p.m.28 views

Security Bulletin: IBM Event Streams is affected by multiple Node.js vulnerabilities

Summary IBM Event Streams is affected by the following vulnerabilities in the included Node.js runtime shipped. Vulnerability Details CVEID: CVE-2019-10795 DESCRIPTION: Node.js undefsafe module could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a...

10CVSS2.1AI score0.03799EPSS
Exploits7Affected Software1
CVE
CVE
added 2020/02/04 8:11 p.m.89 views

CVE-2019-10787

CVE-2019-10787 affects the im-resize Node.js module (v2.3.2 and earlier) and is caused by improper validation of the exec/cmd parameters in index.js, enabling remote code execution via crafted input. CVSS v3.1 base score 9.8 (CRITICAL) with network attack, no user interaction. Remediation: upgrad...

10CVSS9.7AI score0.03799EPSS
Exploits1References2Affected Software1
vulnersOsv
vulnersOsv
added 2020/02/04 2:8 p.m.7 views

chhyun-utils (>=1.0.12 <=1.0.39), jotunheimr (>=1.11.0 <=1.12.1) +4 more potentially affected by CVE-2019-10787 via im-resize (>=2.0.2 <=2.3.2)

im-resize NPM version =2.0.2, =1.0.12, =1.11.0, =1.0.0, =0.0.1, =2.0.2, =2.0.3 - wn-s3-uploader =1.0.0 Source cves: CVE-2019-10787 Source advisory: SNYK:JS-IMRESIZE-544183...

10CVSS7.2AI score0.03799EPSS
Exploits1
Rows per page
Query Builder