← Back

Roar Pidusage

roar-pidusage

Vendor: Roar Pidusage Project • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-23380
1Roar Pidusage Project
1Roar Pidusage
Nov 21, 2024
Apr 18, 2021
N/A· v4
7.3 HIGH· v3
7.5 HIGH· v2
This affects all versions of package roar-pidusage. If attacker-controlled user input is given to the stat function of this package on certain operating systems, it is possible for an attacker to execute arbitrary comman...Show more
This affects all versions of package roar-pidusage. If attacker-controlled user input is given to the stat function of this package on certain operating systems, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec function without input sanitization.Show less