CVE-2017-16225

EPSS 1.2%CWE-200

aegir is a module to help automate JavaScript project management. Version 12.0.0 through and including 12.0.7 bundled and published to npm the user (that performed a aegir-release) GitHub token.

Affected products

HackerOne · aegir node module

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://nodesecurity.io/advisories/546