4 matches found
CVE-2020-7674
access-policy through 3.1.0 is vulnerable to Arbitrary Code Execution. User input provided to the template function is executed by the eval function resulting in code execution...
CVE-2020-7674
access-policy through 3.1.0 is vulnerable to Arbitrary Code Execution. User input provided to the template function is executed by the eval function resulting in code execution...
CVE-2020-7674
access-policy through 3.1.0 is vulnerable to Arbitrary Code Execution. User input provided to the template function is executed by the eval function resulting in code execution...
CVE-2020-7674
CVE-2020-7674 affects access-policy up to version 3.1.0. The vulnerability is caused by user input passed to the template function being executed by eval, enabling arbitrary code execution. Affected component: access-policy encoder/parser. Impact is Arbitary Code Execution with the exact exploita...