Security Advisory

CVE-2020-7752

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-10-26 17:12:38

Last updated 2024-09-17 01:56:58

Assigner snyk

State PUBLISHED

Description

This affects the package systeminformation before 4.27.11. This package is vulnerable to Command Injection. The attacker can concatenate curls parameters to overwrite Javascript files and then execute any OS commands.

← Browse all CVEs View on cve.org ↗