Lucene search
K

4 matches found

EUVD
EUVD
added 2025/12/16 10:37 p.m.4 views

EUVD-2025-203835

systeminformation has a Command Injection vulnerability in fsSize function on Windows...

8.1CVSS6.8AI score0.12863EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/12/16 6:18 p.m.1 views

CVE-2025-68154 Command Injection in fsSize() on Windows

systeminformation is a System and OS information library for node.js. In versions prior to 5.27.14, the fsSize function in systeminformation is vulnerable to OS command injection on Windows systems. The optional drive parameter is directly concatenated into a PowerShell command without...

8.1CVSS7.1AI score0.12863EPSS
Exploits1References2
OSV
OSV
added 2025/12/16 6:18 p.m.8 views

CVE-2025-68154 Command Injection in fsSize() on Windows

systeminformation is a System and OS information library for node.js. In versions prior to 5.27.14, the fsSize function in systeminformation is vulnerable to OS command injection on Windows systems. The optional drive parameter is directly concatenated into a PowerShell command without...

8.1CVSS7.5AI score0.12863EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2022/11/25 12:0 a.m.14 views

The vulnerability of the disk redirect channel in the implementation of the FreeRDP remote desktop protocol allows a intruder to gain unauthorized access to protected information or cause a service failure.

The vulnerability of the disk redirecting channel in the implementation of the FreeRDP remote desktop protocol is related to the issue where the operation goes beyond the buffer boundaries when checking the input length for parameters /drive, +drives, or +home-drive. Exploiting this vulnerability...

9.4CVSS6.1AI score0.00719EPSS
Exploits0References12Affected Software5
Rows per page
Query Builder