11 matches found
EUVD-2021-0755
Malware in sbrugna...
monitoros (>=0.0.1 <=0.0.3), pk-app-pkgmgt (>=0.0.1 <=0.0.2) potentially affected by CVE-2020-7775 via freediskspace (=0.1.2)
freediskspace NPM version =0.1.2 is affected by a known vulnerability. The following packages have a transitive dependency on freediskspace and may be impacted: - monitoros =0.0.1, =0.0.1, =0.0.2 Source cves: CVE-2020-7775 Source advisory: OSV:GHSA-4GFQ-6M28-M5MG...
Improper neutralization of arguments in freediskspace
This affects all versions of package freediskspace. The vulnerability arises out of improper neutralization of arguments in line 71 of freediskspace.js...
GHSA-4GFQ-6M28-M5MG Improper neutralization of arguments in freediskspace
This affects all versions of package freediskspace. The vulnerability arises out of improper neutralization of arguments in line 71 of freediskspace.js...
CVE-2020-7775
This affects all versions of package freediskspace. The vulnerability arises out of improper neutralization of arguments in line 71 of freediskspace.js...
Design/Logic Flaw
This affects all versions of package freediskspace. The vulnerability arises out of improper neutralization of arguments in line 71 of freediskspace.js...
CVE-2020-7775 Command Injection
This affects all versions of package freediskspace. The vulnerability arises out of improper neutralization of arguments in line 71 of freediskspace.js...
CVE-2020-7775
The CVE-2020-7775 entry concerns the npm package freediskspace and a vulnerability described as improper neutralization of arguments in freediskspace.js (line 71), leading to a potential command injection. Affected versions are stated as all versions of freediskspace. In practical terms, this imp...
FreeDiskSpace OS Command Injection Vulnerability
FreeDiskSpace is a codebase by the individual developer of FreeDiskSpace that can display disk space based on Javascript. A security vulnerability exists in all versions of FreeDiskSpace, which stems from an improper neutralization of a parameter in freediskspace.js at line 71...
monitoros (>=0.0.1 <=0.0.3), pk-app-pkgmgt (>=0.0.1 <=0.0.2) potentially affected by CVE-2020-7775 via freediskspace (=0.1.2)
freediskspace NPM version =0.1.2 is affected by a known vulnerability. The following packages have a transitive dependency on freediskspace and may be impacted: - monitoros =0.0.1, =0.0.1, =0.0.2 Source cves: CVE-2020-7775 Source advisory: SNYK:JS-FREEDISKSPACE-1040716...
Command Injection
Overview Affected versions of this package are vulnerable to Command Injection. The vulnerability arises out of improper neutralization of arguments in line 71 of freediskspace.js. Remediation There is no fixed version for freediskspace. Credit: John Hopkins Security Labs...