Description
An issue was discovered in the singleCrunch function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.
Remediation
References
https://github.com/shenzhim/aaptjs/issues/2
Related Vulnerabilities
CVE-2018-17421 Vulnerability in maven package com.zrlog:zrlog
CVE-2022-0624 Vulnerability in maven package org.webjars.npm:parse-path
CVE-2018-1999024 Vulnerability in maven package org.webjars.npm:mathjax
CVE-2023-28628 Vulnerability in maven package lambdaisland:uri
CVE-2021-23356 Vulnerability in npm package kill-process-by-name