Security Advisory

CVE-2020-7615

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-04-07 13:14:04

Last updated 2024-08-04 09:33:19

Assigner snyk

State PUBLISHED

Description

fsa through 0.5.1 is vulnerable to Command Injection. The first argument of execGitCommand(), located within lib/rep.js#63 can be controlled by users without any sanitization to inject arbitrary commands.

← Browse all CVEs View on cve.org ↗