Description
npm/KyleRoss windows-cpu all versions vulnerable to command injection resulting in code execution as Node.js user
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2020-0802 | npm/KyleRoss windows-cpu all versions vulnerable to command injection resulting in code execution as Node.js user |
Github GHSA |
GHSA-63m4-fhf2-cmf7 | Command Execution in windows-cpu |
References
| Link | Providers |
|---|---|
| https://nodesecurity.io/advisories/336 |
|
History
No history.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-09-16T20:01:47.802Z
Reserved: 2017-11-16T00:00:00.000Z
Link: CVE-2017-1000219
No data.
Status : Modified
Published: 2017-11-17T00:29:00.247
Modified: 2026-06-17T00:58:55.723
Link: CVE-2017-1000219
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
EUVD
Github GHSA