Versions of the package nemo-appium before 0.0.9 are vulnerable to Command Injection due to improper input sanitization in the 'module.exports.setup' function.
**Note:** In order to exploit this vulnerability appium-running 0.1.3 has to be installed as one of nemo-appium dependencies.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: snyk
Published: 2023-01-31T05:00:01.701Z
Updated: 2024-08-03T02:31:59.643Z
Reserved: 2022-02-24T11:58:26.952Z
Link: CVE-2022-21129
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-01-31T05:15:11.060
Modified: 2024-11-21T06:43:57.400
Link: CVE-2022-21129
Redhat
No data.