2 matches found
CVE-2021-32090
The dashboard component of StackLift LocalStack 0.12.6 allows attackers to inject arbitrary shell commands via the functionName parameter...
CVE-2021-32090
CVE-2021-32090 affects StackLift LocalStack 0.12.6. The vulnerability is a command-injection flaw in the dashboard component, exploitable through the functionName parameter to inject arbitrary shell commands. The NVD entry assigns a CVSS v3.1 base score of 9.8 (CRITICAL) with network attack vecto...