5 matches found
Moderate: Red Hat Security Advisory: Red Hat OpenShift Container Storage 4.8.5 Security and Bug Fix Update
An update is now available for Red Hat OpenShift Container Storage 4.8.5 on Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availab...
12g (>=0.0.21 <=1.0.1), 1ib (>=1.0.9 <=1.0.11) +7511 more potentially affected by CVE-2020-26301 via ssh2 (>=0.0.2 <=1.3.0)
ssh2 NPM version =0.0.2, =0.0.21, =1.0.9, =0.0.1, =1.0.0, =1.1.0, =0.4.0, =1.0.26, =0.107.10, =1.19.19, =0.107.0, =0.107.0, =0.107.0, =0.69.0, =0.107.0, =0.97.1, =0.123.2 and more Source cves: CVE-2020-26301 Source advisory: OSV:GHSA-652H-XWHF-Q4H6...
CVE-2020-26301
ssh2 is client and server modules written in pure JavaScript for node.js. In ssh2 before version 1.4.0 there is a command injection vulnerability. The issue only exists on Windows. This issue may lead to remote code execution if a client of the library calls the vulnerable method with untrusted...
CVE-2020-26301
CVE-2020-26301 affects the ssh2 Node.js package (mscdex/ssh2). The vulnerability is a command injection in ssh2 prior to version 1.4.0, occurring on Windows when a vulnerable method is invoked with untrusted input. If exploited, this could lead to remote code execution. The issue is addressed in ...
CVE-2020-26301 Command injection in mscdex/ssh2
ssh2 is client and server modules written in pure JavaScript for node.js. In ssh2 before version 1.4.0 there is a command injection vulnerability. The issue only exists on Windows. This issue may lead to remote code execution if a client of the library calls the vulnerable method with untrusted...