npm package
node-notifier
pkg:npm/node-notifier
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-7789 | — | < 8.0.1 | 8.0.1 | Dec 11, 2020 | This affects the package node-notifier before 9.0.0. It allows an attacker to run arbitrary commands on Linux machines due to the options params not being sanitised when being passed an array. |
- CVE-2020-7789Dec 11, 2020affected < 8.0.1fixed 8.0.1
This affects the package node-notifier before 9.0.0. It allows an attacker to run arbitrary commands on Linux machines due to the options params not being sanitised when being passed an array.