CVE-2017-1000228

CVE-2017-1000228

EPSS 6.3%

nodejs ejs versions older than 2.5.3 is vulnerable to remote code execution due to weak input validation in ejs.renderFile() function

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://snyk.io/vuln/npm:ejs:20161128 http://www.securityfocus.com/bid/101897