4 matches found
CVE-2021-34080
OS Command Injection vulnerability in es128 ssl-utils 1.0.0 for Node.js allows attackers to execute arbitrary commands via unsanitized shell metacharacters provided to the createCertRequest and the createCert functions...
power-proxy (>=0.0.2 <=0.0.30) potentially affected by CVE-2021-34080 via ssl-utils (=0.3.0)
ssl-utils NPM version =0.3.0 is affected by a known vulnerability. The following packages have a transitive dependency on ssl-utils and may be impacted: - power-proxy =0.0.2, =0.0.30 Source cves: CVE-2021-34080 Source advisory: OSV:GHSA-552J-PV39-F3JF...
CVE-2021-34080
OS Command Injection vulnerability in es128 ssl-utils 1.0.0 for Node.js allows attackers to execute arbitrary commands via unsanitized shell metacharacters provided to the createCertRequest and the createCert functions...
CVE-2021-34080
CVE-2021-34080 describes an OS Command Injection in es128 ssl-utils 1.0.0 for Node.js, where unsanitized shell metacharacters supplied to createCertRequest() and createCert() enable arbitrary command execution. The provided connected documents (Red Hat, Veracode, GitHub advisory GHSA-552J-PV39-F3...