Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:10 p.m.8 views

CVE-2020-7628

umount through 1.1.6 is vulnerable to Command Injection. The argument device can be controlled by users without any sanitization...

9.8CVSS6.8AI score0.01744EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2020/06/10 8:28 p.m.7 views

@pho-nomenal/5-minute-github-demo (>=6.0.3 <=21.5.1), eject-media (>=0.0.1 <=0.0.2) +2 more potentially affected by CVE-2020-7628 via umount (=1.1.6)

umount NPM version =1.1.6 is affected by a known vulnerability. The following packages have a transitive dependency on umount and may be impacted: - @pho-nomenal/5-minute-github-demo =6.0.3, =0.0.1, =0.1.1, =1.1.0, =1.1.4 Source cves: CVE-2020-7628 Source advisory: OSV:GHSA-6Q48-VJQ2-MWCJ...

9.8CVSS7.2AI score0.01744EPSS
Exploits0
NVD
NVD
added 2020/04/02 10:15 p.m.18 views

CVE-2020-7628

umount through 1.1.6 is vulnerable to Command Injection. The argument device can be controlled by users without any sanitization...

9.8CVSS9.5AI score0.01744EPSS
Exploits0References1
OSV
OSV
added 2020/04/02 10:15 p.m.3 views

CVE-2020-7628

umount through 1.1.6 is vulnerable to Command Injection. The argument device can be controlled by users without any sanitization...

9.8CVSS5.8AI score0.01744EPSS
Exploits0References1
CVE
CVE
added 2020/04/02 9:33 p.m.69 views

CVE-2020-7628

The CVE-2020-7628 entry exposes a Command Injection flaw in the Node.js package umount up to version 1.1.6, where the user-supplied device argument is passed to an exec call without sanitization. Exploitation could allow an attacker to execute arbitrary code on the host. Public reports (Snyk advi...

9.8CVSS9.4AI score0.01744EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/04/02 9:33 p.m.27 views

CVE-2020-7628

umount through 1.1.6 is vulnerable to Command Injection. The argument device can be controlled by users without any sanitization...

9.6AI score0.01744EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2020/04/02 12:0 a.m.4 views

@pho-nomenal/5-minute-github-demo (>=6.0.3 <=21.5.1), eject-media (>=0.0.1 <=0.0.2) +2 more potentially affected by CVE-2020-7628 via umount (=1.1.6)

umount NPM version =1.1.6 is affected by a known vulnerability. The following packages have a transitive dependency on umount and may be impacted: - @pho-nomenal/5-minute-github-demo =6.0.3, =0.0.1, =0.1.1, =1.1.0, =1.1.4 Source cves: CVE-2020-7628 Source advisory: SNYK:JS-UMOUNT-564265...

9.8CVSS7.2AI score0.01744EPSS
Exploits0
Rows per page
Query Builder