Security Advisory

CVE-2021-23732

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-11-22 17:00:16

Last updated 2024-09-17 03:22:30

Assigner snyk

State PUBLISHED

Description

This affects all versions of package docker-cli-js. If the command parameter of the Docker.command method can at least be partially controlled by a user, they will be in a position to execute any arbitrary OS commands on the host system.

← Browse all CVEs View on cve.org ↗