188 matches found
Node.JS System Information Library <5.3.1 - Remote Command Injection
Node.JS System Information Library System before version 5.3.1 is susceptible to remote command injection. Node.JS npm package "systeminformation" is an open source collection of functions to retrieve detailed hardware, system and OS information. id: CVE-2021-21315 info: name: Node.JS System...
SUSE CVE-2026-44724
systeminformation is a System and OS information library for node.js. From 4.17.0 to 5.31.5, on Linux, systeminformation is vulnerable to command injection in networkInterfaces when an active NetworkManager connection profile name contains shell metacharacters. The vulnerable value is obtained...
Malicious code in @doaction/systeminformation (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d2fd59d1828036e5c2cc49573fe68220054d50c3d41e0782735809a4c05ac45 Package name @doaction/systeminformation impersonates the widely-used systeminformation npm package and is published at suspiciously inflated version...
MAL-2026-5381 Malicious code in @doaction/systeminformation (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d2fd59d1828036e5c2cc49573fe68220054d50c3d41e0782735809a4c05ac45 Package name @doaction/systeminformation impersonates the widely-used systeminformation npm package and is published at suspiciously inflated version...
ROOT-APP-NPM-CVE-2025-68154 CVE-2025-68154 in @rootio/systeminformation - Patched by Root
Root has patched CVE-2025-68154 in the @rootio/systeminformation package for Root:npm. Multiple fixed versions available...
ROOT-APP-NPM-CVE-2026-44724 CVE-2026-44724 in @rootio/systeminformation - Patched by Root
Root has patched CVE-2026-44724 in the @rootio/systeminformation package for Root:npm. Multiple fixed versions available...
ROOT-APP-NPM-CVE-2026-26280 CVE-2026-26280 in @rootio/systeminformation - Patched by Root
Root has patched CVE-2026-26280 in the @rootio/systeminformation package for Root:npm. Multiple fixed versions available...
ROOT-APP-NPM-CVE-2026-26318 CVE-2026-26318 in @rootio/systeminformation - Patched by Root
Root has patched CVE-2026-26318 in the @rootio/systeminformation package for Root:npm. Multiple fixed versions available...
Linux Distros Unpatched Vulnerability : CVE-2025-68154
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - systeminformation is a System and OS information library for node.js. In versions prior to 5.27.14, the fsSize function in systeminformation is vulnerable to OS...
Linux Distros Unpatched Vulnerability : CVE-2026-26318
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - systeminformation is a System and OS information library for node.js. Versions prior to 5.31.0 are vulnerable to command injection via unsanitized locate output...
Linux Distros Unpatched Vulnerability : CVE-2024-56334
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - systeminformation is a System and OS information library for node.js. In affected versions SSIDs are not sanitized when before they are passed as a parameter to...
Linux Distros Unpatched Vulnerability : CVE-2026-44724
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - systeminformation is a System and OS information library for node.js. From 4.17.0 to 5.31.5, on Linux, systeminformation is vulnerable to command injection in...
Linux Distros Unpatched Vulnerability : CVE-2026-26280
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - systeminformation is a System and OS information library for node.js. In versions prior to 5.30.8, a command injection vulnerability in the wifiNetworks functio...
CVE-2026-44724
systeminformation is a System and OS information library for node.js. From 4.17.0 to 5.31.5, on Linux, systeminformation is vulnerable to command injection in networkInterfaces when an active NetworkManager connection profile name contains shell metacharacters. The vulnerable value is obtained...
DEBIAN-CVE-2026-44724
systeminformation is a System and OS information library for node.js. From 4.17.0 to 5.31.5, on Linux, systeminformation is vulnerable to command injection in networkInterfaces when an active NetworkManager connection profile name contains shell metacharacters. The vulnerable value is obtained...
UBUNTU-CVE-2026-44724
systeminformation is a System and OS information library for node.js. From 4.17.0 to 5.31.5, on Linux, systeminformation is vulnerable to command injection in networkInterfaces when an active NetworkManager connection profile name contains shell metacharacters. The vulnerable value is obtained...
EUVD-2026-32639
systeminformation is a System and OS information library for node.js. From 4.17.0 to 5.31.5, on Linux, systeminformation is vulnerable to command injection in networkInterfaces when an active NetworkManager connection profile name contains shell metacharacters. The vulnerable value is obtained...
CVE-2026-44724 systeminformation: Linux command injection in networkInterfaces() via unsanitized NetworkManager connection profile name
systeminformation is a System and OS information library for node.js. From 4.17.0 to 5.31.5, on Linux, systeminformation is vulnerable to command injection in networkInterfaces when an active NetworkManager connection profile name contains shell metacharacters. The vulnerable value is obtained...
CVE-2026-44724 systeminformation: Linux command injection in networkInterfaces() via unsanitized NetworkManager connection profile name
systeminformation is a System and OS information library for node.js. From 4.17.0 to 5.31.5, on Linux, systeminformation is vulnerable to command injection in networkInterfaces when an active NetworkManager connection profile name contains shell metacharacters. The vulnerable value is obtained...
CVE-2026-44724
systeminformation is a System and OS information library for node.js. From 4.17.0 to 5.31.5, on Linux, systeminformation is vulnerable to command injection in networkInterfaces when an active NetworkManager connection profile name contains shell metacharacters. The vulnerable value is obtained...