← voltar
CVE-2020-7606

CVE-2020-7606

EPSS 2.6%
docker-compose-remote-api through 0.1.4 allows execution of arbitrary commands. Within 'index.js' of the package, the function 'exec(serviceName, cmd, fnStdout, fnStderr, fnExit)' uses the variable 'serviceName' which can be controlled by users without any sanitization.
Produtos afetados
n/a · docker-compose-remote-api

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://snyk.io/vuln/SNYK-JS-DOCKERCOMPOSEREMOTEAPI-560125