CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4 matches found

Veracode•added 2020/03/17 8:9 a.m.•15 views

Remote Code Execution (RCE)

node-prompt-here is vulnerable to remote code execution RCE. The runCommand of the file linux/manager.js accepts user-provided arguments without sanitization, allowing the user to get the control over the index. process.env.NMCLI...

9.8CVSS3.8AI score0.00426EPSS

Exploits1References1Affected Software1

OSV•added 2020/03/15 10:15 p.m.•8 views

CVE-2020-7602

node-prompt-here through 1.0.1 allows execution of arbitrary commands. The "runCommand" is called by "getDevices" function in file "linux/manager.js", which is required by the "index. process.env.NMCLI" in the file "linux/manager.js". This function is used to construct the argument of function...

9.8CVSS7AI score

Exploits0References1

NVD•added 2020/03/15 10:15 p.m.•9 views

CVE-2020-7602

node-prompt-here through 1.0.1 allows execution of arbitrary commands. The "runCommand" is called by "getDevices" function in file "linux/manager.js", which is required by the "index. process.env.NMCLI" in the file "linux/manager.js". This function is used to construct the argument of function...

9.8CVSS9.5AI score0.00426EPSS

Exploits1References1

Cvelist•added 2020/03/15 9:26 p.m.•11 views

CVE-2020-7602

node-prompt-here through 1.0.1 allows execution of arbitrary commands. The "runCommand" is called by "getDevices" function in file "linux/manager.js", which is required by the "index. process.env.NMCLI" in the file "linux/manager.js". This function is used to construct the argument of function...

9.6AI score0.00426EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by