Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Popular Node.js package vulnerable to command injection attacks
Malware and Vulnerabilities
February 24, 2021
The Daily Swig
The maintainers of systeminformation, a Node.js package used for getting hardware, system, and OS information, have patched a bug that left applications vulnerable to command injection attacks.
Read More
systeminformation
Command Injection Vulnerability
Node.js package
improper parameter
array sanitation
Publisher
Previous
Finnish IT Services Giant TietoEVRY Discloses Ransomwar ...
Breaches and Incidents
Next
Checkout Skimmers Powered by Chip Cards — Krebs on Secu ...
Emerging Threats
/https://cyware-ent.s3.amazonaws.com/image_bank/839c_shutterstock_639536698.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/cbe2_shutterstock_572039596.jpg)
