Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:58 a.m.16 views

CVE-2020-7627

node-key-sender through 1.0.11 is vulnerable to Command Injection. It allows execution of arbitrary commands via the 'arrParams' argument in the 'execute' function...

9.8CVSS7.3AI score0.04118EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2022/02/10 11:46 p.m.7 views

@bionicmetrics/bionic (>=1.2.0 <=1.3.6), @smoosee/wakemeup (>=1.0.9 <=1.20.0) +7 more potentially affected by CVE-2020-7627 via node-key-sender (=1.0.11)

node-key-sender NPM version =1.0.11 is affected by a known vulnerability. The following packages have a transitive dependency on node-key-sender and may be impacted: - @bionicmetrics/bionic =1.2.0, =1.0.9, =1.5.0, =0.0.1, =1.0.0, =1.0.5, =1.2.1, =1.1.0, =2.2.0 Source cves: CVE-2020-7627 Source...

9.8CVSS7.2AI score0.04118EPSS
Exploits1
NVD
NVD
added 2020/04/02 10:15 p.m.34 views

CVE-2020-7627

node-key-sender through 1.0.11 is vulnerable to Command Injection. It allows execution of arbitrary commands via the 'arrParams' argument in the 'execute' function...

9.8CVSS9.7AI score0.04118EPSS
Exploits1References2
Cvelist
Cvelist
added 2020/04/02 9:28 p.m.35 views

CVE-2020-7627

node-key-sender through 1.0.11 is vulnerable to Command Injection. It allows execution of arbitrary commands via the 'arrParams' argument in the 'execute' function...

9.8AI score0.04118EPSS
Exploits1References2
CVE
CVE
added 2020/04/02 9:28 p.m.70 views

CVE-2020-7627

The CVE refers to the npm module node-key-sender (versions up to 1.0.11 and earlier). The root cause is a Command Injection in the function that uses the arrParams argument of the execute() method, allowing execution of arbitrary commands. Multiple connected sources (Red Hat, Snyk, Veracode, CNVD...

9.8CVSS9.7AI score0.04118EPSS
Exploits1References2Affected Software1
vulnersOsv
vulnersOsv
added 2020/04/02 12:0 a.m.6 views

@bionicmetrics/bionic (>=1.2.0 <=1.3.6), @smoosee/wakemeup (>=1.0.9 <=1.20.0) +8 more potentially affected by CVE-2020-7627 via node-key-sender (>=1.0.11 <=1.0.9)

node-key-sender NPM version =1.0.11, =1.2.0, =1.0.9, =1.5.0, =0.0.1, =1.0.0, =1.0.5, =0.9.0, =1.2.1, =1.1.0, =2.2.0 Source cves: CVE-2020-7627 Source advisory: SNYK:JS-NODEKEYSENDER-564261...

9.8CVSS7.2AI score0.04118EPSS
Exploits1
Rows per page
Query Builder