CVE-2020-7672: Improper Input Validation

June 10, 2020 (updated July 21, 2021)

mosc is vulnerable to Arbitrary Code Execution. User input provided to properties argument is executed by the eval function, resulting in code execution.

References

nvd.nist.gov/vuln/detail/CVE-2020-7672

Detect and mitigate CVE-2020-7672 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →