3 matches found
CVE-2021-23732
This affects all versions of package docker-cli-js. If the command parameter of the Docker.command method can at least be partially controlled by a user, they will be in a position to execute any arbitrary OS commands on the host system...
CVE-2021-23732
CVE-2021-23732 affects docker-cli-js. The vulnerability allows OS command execution when the user can partially control the command parameter of Docker.command, enabling arbitrary commands on the host. The connected advisories detail exploitation paths (Snyk example) and indicate there is no fixe...
@aeternity/aeproject (>=3.0.4 <=3.0.5), @berlinvege/fedockerjs (>=1.0.4 <=1.0.5) +95 more potentially affected by CVE-2021-23732 via docker-cli-js (>=1.0.9 <=2.9.0)
docker-cli-js NPM version =1.0.9, =3.0.4, =1.0.4, =0.0.10, =1.0.0, =0.0.1, =0.0.1, =1.0.710, =0.1.0, =3.0.28, =3.0.29, =0.0.1, =0.8.6, =1.0.0, =1.0.2 and more Source cves: CVE-2021-23732 Source advisory: SNYK:JS-DOCKERCLIJS-1568516...