Security Advisory

CVE-2022-25923

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-01-06 05:00:01

Last updated 2025-04-10 13:36:44

Assigner snyk

State PUBLISHED

Description

Versions of the package exec-local-bin before 1.2.0 are vulnerable to Command Injection via the theProcess() functionality due to improper user-input sanitization.

← Browse all CVEs View on cve.org ↗