4 matches found
CVE-2020-28446
The package ntesseract before 0.2.9 are vulnerable to Command Injection via lib/tesseract.js...
CVE-2020-28446
The package ntesseract before 0.2.9 are vulnerable to Command Injection via lib/tesseract.js...
CVE-2020-28446 Command Injection
The package ntesseract before 0.2.9 are vulnerable to Command Injection via lib/tesseract.js...
CVE-2020-28446
The CVE-2020-28446 entry concerns ntesseract prior to 0.2.9, with a vulnerability in lib/tesseract.js that allows Command Injection. Veracode and OSV corroborate a vulnerability enabling remote command execution via the tesseract.js component; Snyk provides a PoC and confirms the remediation: upg...