Security Advisory

CVE-2022-21165

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-08-29 05:00:17

Last updated 2024-09-17 04:15:11

Assigner snyk

State PUBLISHED

Description

All versions of package font-converter are vulnerable to Arbitrary Command Injection due to missing sanitization of input that potentially flows into the child_process.exec() function.

← Browse all CVEs View on cve.org ↗