Security Advisory

CVE-2020-7603

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-03-15 21:48:52

Last updated 2024-08-04 09:33:20

Assigner snyk

State PUBLISHED

Description

closure-compiler-stream through 0.1.15 allows execution of arbitrary commands. The argument "options" of the exports function in "index.js" can be controlled by users without any sanitization.

← Browse all CVEs View on cve.org ↗