Lucene search
Veracode Vulnerability DatabaseVERACODE:31082HistoryJun 29, 2021 - 1:30 p.m.
Remote Code Execution (RCE)
2021-06-2913:30:13
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.005 Low
EPSS
Percentile
77.1%
wincred is vulnerable to remote code execution. The vulnerability exists due to the lack of sanitization of input into the getCredential function.
| CPE | Name | Operator | Version |
|---|---|---|---|
| @rolangom/wincred | eq | 1.0.0 | |
| wincred | le | 1.0.2 | |
| @rolangom/wincred | eq | 1.0.0 | |
| wincred | le | 1.0.2 |
Related
cve
cve
CVE-2021-23399
2021-06-28 08:15:07
nvd
nvd
CVE-2021-23399
2021-06-28 08:15:07
osv
osv
Arbitrary Command Injection
2021-06-29 18:26:05
github
github
Arbitrary Command Injection
2021-06-29 18:26:05
prion
prion
Design/Logic Flaw
2021-06-28 08:15:00
cvelist
cvelist
CVE-2021-23399 Arbitrary Command Injection
2021-06-28 00:00:00