Versions of the package nemo-appium before 0.0.9 are vulnerable to Command Injection due to improper input sanitization in the 'module.exports.setup' function. **Note:** In order to exploit this vulnerability appium-running 0.1.3 has to be installed as one of nemo-appium dependencies.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: snyk

Published: 2023-01-31T05:00:01.701Z

Updated: 2024-08-03T02:31:59.643Z

Reserved: 2022-02-24T11:58:26.952Z

Link: CVE-2022-21129

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-01-31T05:15:11.060

Modified: 2023-11-07T03:43:25.477

Link: CVE-2022-21129

cve-icon Redhat

No data.