gry vulnerable to Command Injection
High severity
GitHub Reviewed
Published
Jan 11, 2023
to the GitHub Advisory Database
•
Updated Oct 20, 2023
Description
Published by the National Vulnerability Database
Jan 11, 2023
Published to the GitHub Advisory Database
Jan 11, 2023
Reviewed
Jan 11, 2023
Last updated
Oct 20, 2023
A vulnerability, which was classified as critical, was found in IonicaBizau node-gry up to 5.x. This affects an unknown part. The manipulation leads to command injection. Upgrading to version 6.0.0 is able to address this issue. The name of the patch is 5108446c1e23960d65e8b973f1d9486f9f9dbd6c. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-218019.
References