CVE-2024-3566 | Node.js up to 21.7.2 on Windows CreateProcess os command injection

Inserito da Angelo Barbosa | Apr 10, 2024 | CVE

A vulnerability classified as critical has been found in Node.js up to 21.7.2 on Windows. Affected is the function CreateProcess. The manipulation leads to os command injection.

This vulnerability is traded as CVE-2024-3566. The attack needs to be approached within the local network. There is no exploit available.

CVE-2024-3566 | Node.js up to 21.7.2 on Windows CreateProcess os command injection

Post correlati

CVE-2024-32638 | Apache APISIX 3.8.0/3.9.0 forward-auth Plugin request smuggling

CVE-2023-49713 | Jtekt Electronics GC-A22W-CW NetBIOS Service denial of service

CVE-2023-49574 | Flexense VX Search Enterprise 10.2.14 /add_job job_name cross site scripting

CVE-2022-43841 | IBM Aspera Console up to 3.4.2 PL9 unknown vulnerability (XFDB-239078)