Description
npm/KyleRoss windows-cpu all versions vulnerable to command injection resulting in code execution as Node.js user
Remediation
References
https://nodesecurity.io/advisories/336
Related Vulnerabilities
CVE-2021-4133 Vulnerability in maven package org.keycloak:keycloak-services
CVE-2022-22881 Vulnerability in maven package org.jeecgframework.boot:jeecg-boot-base
CVE-2020-7636 Vulnerability in npm package adb-driver
CVE-2023-34466 Vulnerability in maven package org.xwiki.platform:xwiki-platform-tag-api
CVE-2021-29486 Vulnerability in npm package cumulative-distribution-function