Description
npm/KyleRoss windows-cpu all versions vulnerable to command injection resulting in code execution as Node.js user
Remediation
References
https://nodesecurity.io/advisories/336
Related Vulnerabilities
CVE-2021-23341 Vulnerability in maven package org.webjars:prismjs
CVE-2022-25852 Vulnerability in npm package libpq
CVE-2023-37913 Vulnerability in maven package org.xwiki.platform:xwiki-platform-office-importer
CVE-2022-35144 Vulnerability in npm package raneto
CVE-2022-2191 Vulnerability in maven package org.eclipse.jetty:jetty-server