Lucene search
Veracode Vulnerability DatabaseVERACODE:25919HistoryJul 21, 2020 - 1:33 a.m.
OS Command Injection
2020-07-2101:33:21
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
3
0.016 Low
EPSS
Percentile
87.5%
codecov is vulnerable to OS command injection. The vulnerability exists as it was possibly to use backticks “`” to bypass the sanitizer. This issue is related to CVE-2020-7597.
Related
osv
osv
Command injection in codecov (npm package)
2020-07-20 17:20:20
CVE-2020-15123
2020-07-20 18:15:12
CVE-2020-7597
2020-02-17 19:15:12
prion
prion
Command injection
2020-07-20 18:15:00
Design/Logic Flaw
2020-02-17 19:15:00
cve
cve
CVE-2020-15123
2020-07-20 18:15:12
CVE-2020-7597
2020-02-17 19:15:12
github
github
Command injection in codecov (npm package)
2020-07-20 17:20:20
codecov NPM module allows remote attackers to execute arbitrary commands
2020-02-19 17:29:39
Command Injection in standard-version
2020-07-13 21:34:59
cvelist
cvelist
CVE-2020-15123 Command injection in codecov (npm package)
2020-07-20 17:20:16
CVE-2020-7597
2020-02-17 18:48:40
nvd
nvd
CVE-2020-15123
2020-07-20 18:15:12
CVE-2020-7597
2020-02-17 19:15:12
githubexploit
githubexploit
Exploit for OS Command Injection in Codecov
2020-12-01 09:45:48
veracode
veracode
Remote Code Execution (RCE)
2020-02-18 03:57:59