Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:0 a.m.10 views

CVE-2020-7673

node-extend through 0.2.0 is vulnerable to Arbitrary Code Execution. User input provided to the argument A of extend functionA,B,as,isAargs located within lib/extend.js is executed by the eval function, resulting in code execution...

9.8CVSS7.1AI score0.02512EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2021/05/17 9:0 p.m.5 views

@qbunnyteam/superlogin (>=0.0.3 <=0.0.4), @sensu/superlogin (>=1.2.2 <=1.2.6) +16 more potentially affected by CVE-2020-7673 via node-extend (=0.2.0)

node-extend NPM version =0.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on node-extend and may be impacted: - @qbunnyteam/superlogin =0.0.3, =1.2.2, =0.1.0, =0.1.0, =0.0.0, =0.2.0, =4.1.4, =1.1.0, =1.4.1 and more Source cves: CVE-2020-7673 Source...

9.8CVSS7.2AI score0.02512EPSS
Exploits1
NVD
NVD
added 2020/06/10 4:15 p.m.30 views

CVE-2020-7673

node-extend through 0.2.0 is vulnerable to Arbitrary Code Execution. User input provided to the argument A of extend functionA,B,as,isAargs located within lib/extend.js is executed by the eval function, resulting in code execution...

9.8CVSS0.02512EPSS
Exploits1References1
CVE
CVE
added 2020/06/10 3:36 p.m.66 views

CVE-2020-7673

CVE-2020-7673 affects node-extend up to version 0.2.0. The vulnerability arises in the extend(A,B,as,isAargs) function (lib/extend.js) where user input is passed to eval, enabling Arbitrary Code Execution. Affected: node-extend 0.2.0 and earlier. Impact: potential remote code execution with netwo...

9.8CVSS9.6AI score0.02512EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/06/10 3:36 p.m.30 views

CVE-2020-7673

node-extend through 0.2.0 is vulnerable to Arbitrary Code Execution. User input provided to the argument A of extend functionA,B,as,isAargs located within lib/extend.js is executed by the eval function, resulting in code execution...

9.7AI score0.02512EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2020/06/10 3:36 p.m.18 views

CVE-2020-7673

node-extend through 0.2.0 is vulnerable to Arbitrary Code Execution. User input provided to the argument A of extend functionA,B,as,isAargs located within lib/extend.js is executed by the eval function, resulting in code execution...

9.8CVSS9.8AI score0.02512EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2020/06/05 3:16 p.m.6 views

@qbunnyteam/superlogin (>=0.0.3 <=0.0.4), @sensu/superlogin (>=1.2.2 <=1.2.6) +16 more potentially affected by CVE-2020-7673 via node-extend (=0.2.0)

node-extend NPM version =0.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on node-extend and may be impacted: - @qbunnyteam/superlogin =0.0.3, =1.2.2, =0.1.0, =0.1.0, =0.0.0, =0.2.0, =4.1.4, =1.1.0, =1.4.1 and more Source cves: CVE-2020-7673 Source...

9.8CVSS7.2AI score0.02512EPSS
Exploits1
Rows per page
Query Builder