Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/05/22 4:49 p.m.8 views

CVE-2020-7606

docker-compose-remote-api through 0.1.4 allows execution of arbitrary commands. Within 'index.js' of the package, the function 'execserviceName, cmd, fnStdout, fnStderr, fnExit' uses the variable 'serviceName' which can be controlled by users without any sanitization...

9.8CVSS7.1AI score0.02644EPSS
Exploits1References1
vulnersosv
vulnersosv
added 2021/05/07 4:14 p.m.6 views

exframe-integration (>=1.0.0 <=1.1.15), test-integration (>=2.0.0 <=2.2.7) potentially affected by CVE-2020-7606 via docker-compose-remote-api (=0.1.4)

docker-compose-remote-api NPM version =0.1.4 is affected by a known vulnerability. The following packages have a transitive dependency on docker-compose-remote-api and may be impacted: - exframe-integration =1.0.0, =2.0.0, =2.2.7 Source cves: CVE-2020-7606 Source advisory: OSV:GHSA-Q6PJ-JH94-5FPR...

9.8CVSS7.2AI score0.02644EPSS
Exploits1
nvd
nvd
added 2020/03/15 10:15 p.m.31 views

CVE-2020-7606

docker-compose-remote-api through 0.1.4 allows execution of arbitrary commands. Within 'index.js' of the package, the function 'execserviceName, cmd, fnStdout, fnStderr, fnExit' uses the variable 'serviceName' which can be controlled by users without any sanitization...

9.8CVSS9.6AI score0.02644EPSS
Exploits1References1
cvelist
cvelist
added 2020/03/15 9:31 p.m.27 views

CVE-2020-7606

docker-compose-remote-api through 0.1.4 allows execution of arbitrary commands. Within 'index.js' of the package, the function 'execserviceName, cmd, fnStdout, fnStderr, fnExit' uses the variable 'serviceName' which can be controlled by users without any sanitization...

9.7AI score0.02644EPSS
Exploits1References1
vulnersosv
vulnersosv
added 2020/03/13 11:2 a.m.10 views

exframe-integration (>=1.0.0 <=1.1.15), test-integration (>=2.0.0 <=2.2.7) potentially affected by CVE-2020-7606 via docker-compose-remote-api (=0.1.4)

docker-compose-remote-api NPM version =0.1.4 is affected by a known vulnerability. The following packages have a transitive dependency on docker-compose-remote-api and may be impacted: - exframe-integration =1.0.0, =2.0.0, =2.2.7 Source cves: CVE-2020-7606 Source advisory:...

9.8CVSS7.2AI score0.02644EPSS
Exploits1
Rows per page
Query Builder