6 matches found
CVE-2021-34082
OS Command Injection vulnerability in allenhwkim proctree through 0.1.1 and commit 0ac10ae575459457838f14e21d5996f2fa5c7593 for Node.js, allows attackers to execute arbitrary commands via the fix function...
webtest (>=0.8.0 <=0.8.3) potentially affected by CVE-2021-34082 via proctree (=0.1.1)
proctree NPM version =0.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on proctree and may be impacted: - webtest =0.8.0, =0.8.3 Source cves: CVE-2021-34082 Source advisory: OSV:GHSA-CV76-RV4H-4MQC...
CVE-2021-34082
OS Command Injection vulnerability in allenhwkim proctree through 0.1.1 and commit 0ac10ae575459457838f14e21d5996f2fa5c7593 for Node.js, allows attackers to execute arbitrary commands via the fix function...
CVE-2021-34082
OS Command Injection vulnerability in allenhwkim proctree through 0.1.1 and commit 0ac10ae575459457838f14e21d5996f2fa5c7593 for Node.js, allows attackers to execute arbitrary commands via the fix function...
CVE-2021-34082
CVE-2021-34082 describes an OS command injection in the Node.js package proctree (versions up to 0.1.1 and the specific commit 0ac10ae575459457838f14e21d5996f2fa5c7593) where the vulnerable path is the getProcessTree/fix workflow. The root cause, per connected sources, is lack of sanitization of ...
CVE-2021-34082
OS Command Injection vulnerability in allenhwkim proctree through 0.1.1 and commit 0ac10ae575459457838f14e21d5996f2fa5c7593 for Node.js, allows attackers to execute arbitrary commands via the fix function...