CVE-2021-45459

Improper Neutralization of Special Elements used in a Command ('Command Injection') in npm/node-windows

Identifiers

CVE-2021-45459

Package Slug

npm/node-windows

Vulnerability

Improper Neutralization of Special Elements used in a Command ('Command Injection')

Description

lib/cmd.js in the node-windows package for Node.js allows command injection via the PID parameter.

Affected Versions

All versions up to 0.1.14, version 1.0.0

Solution

Unfortunately, there is no solution available yet.

Last Modified

2022-01-04

source