2024-07-14 02:06:08 +00:00

246 lines
8.4 KiB
JSON

{
"id": "CVE-2021-23330",
"sourceIdentifier": "report@snyk.io",
"published": "2021-02-01T15:15:13.450",
"lastModified": "2022-06-28T14:11:45.273",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "All versions of package launchpad are vulnerable to Command Injection via stop."
},
{
"lang": "es",
"value": "Todas las versiones del paquete launchpad son vulnerables a una inyecci\u00f3n de comandos por medio de stop"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "report@snyk.io",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5
},
"baseSeverity": "HIGH",
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-78"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.1.0:*:*:*:*:node.js:*:*",
"matchCriteriaId": "9D41E148-9F2D-4718-A249-7FD69F0F9C5A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.2.0:*:*:*:*:node.js:*:*",
"matchCriteriaId": "1648F050-8CA9-4902-A8B6-D6E96C8082A8"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.2.1:*:*:*:*:node.js:*:*",
"matchCriteriaId": "DFED6EFE-7032-4619-A48F-AD7BA6F6B87F"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.3.0:*:*:*:*:node.js:*:*",
"matchCriteriaId": "43959509-EFF6-4B9E-A615-8CD40D5D838E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.4.0:*:*:*:*:node.js:*:*",
"matchCriteriaId": "1043FA54-6DA7-4999-8CAE-6834535F669A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.4.1:*:*:*:*:node.js:*:*",
"matchCriteriaId": "233A9C39-014C-42CD-9E9C-D52CBD56AFC1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.4.2:*:*:*:*:node.js:*:*",
"matchCriteriaId": "5301F938-99A5-40CA-B092-CBB2C1F797AA"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.4.3:*:*:*:*:node.js:*:*",
"matchCriteriaId": "8464C5C9-AAF7-4D4F-9BD0-20B125BCD35D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.4.4:*:*:*:*:node.js:*:*",
"matchCriteriaId": "17D47575-2BB4-4B5D-93CC-DA4E6EE73A12"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.4.5:*:*:*:*:node.js:*:*",
"matchCriteriaId": "A62F8200-D82A-4D12-B893-D3FE7B32B383"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.4.6:*:*:*:*:node.js:*:*",
"matchCriteriaId": "AE67165E-40B3-484F-8305-F82835144722"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.4.7:*:*:*:*:node.js:*:*",
"matchCriteriaId": "C649304E-1BC5-48DA-BCAA-4E76BD78C151"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.4.8:*:*:*:*:node.js:*:*",
"matchCriteriaId": "AF4D75CF-DB33-4DCB-A726-4339A58ED663"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.4.9:*:*:*:*:node.js:*:*",
"matchCriteriaId": "7151CE31-B776-4285-A252-9FA55DB1133C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.5.0:*:*:*:*:node.js:*:*",
"matchCriteriaId": "62AE1AEA-FE5A-4DA6-A178-B26A269DECBF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.5.1:*:*:*:*:node.js:*:*",
"matchCriteriaId": "D3F95C1C-2EA1-405C-A5AC-6D2E4FFA31FC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.5.2:*:*:*:*:node.js:*:*",
"matchCriteriaId": "B5979021-0EF1-48D7-B947-3C7586E8BFE3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.5.3:*:*:*:*:node.js:*:*",
"matchCriteriaId": "7239DD77-A670-4BF7-A8D8-D2CAF75E57EB"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.5.4:*:*:*:*:node.js:*:*",
"matchCriteriaId": "A0F77D58-23BC-4E3E-B140-40732E09732B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.6.0:*:*:*:*:node.js:*:*",
"matchCriteriaId": "161CBCE2-A330-4E7B-83FB-CEDE15125BBD"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.7.0:*:*:*:*:node.js:*:*",
"matchCriteriaId": "218E2FA3-9339-45D0-A3FF-7B466EC3DA68"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.7.1:*:*:*:*:node.js:*:*",
"matchCriteriaId": "4F5402FC-4BA2-43F6-99ED-F8AF23C2B1BE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.7.2:*:*:*:*:node.js:*:*",
"matchCriteriaId": "BB4299AF-5100-4CE1-B519-D26C5EAEBE09"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.7.3:*:*:*:*:node.js:*:*",
"matchCriteriaId": "6328BD26-3C5E-4D14-AB19-39DFF93A5B5E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.7.4:*:*:*:*:node.js:*:*",
"matchCriteriaId": "A1E894E5-5260-4815-9BC4-6A831F1B5A1A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bitovi:launchpad:0.7.5:*:*:*:*:node.js:*:*",
"matchCriteriaId": "4CAB370C-A97F-45D7-9493-0D164CDD37FD"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/bitovi/launchpad/issues/123%23issuecomment-732188118",
"source": "report@snyk.io",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://github.com/bitovi/launchpad/pull/124",
"source": "report@snyk.io",
"tags": [
"Exploit",
"Patch",
"Third Party Advisory"
]
},
{
"url": "https://snyk.io/vuln/SNYK-JS-LAUNCHPAD-1044065",
"source": "report@snyk.io",
"tags": [
"Third Party Advisory"
]
}
]
}