systeminformation is an npm package that provides system and OS information library for node.js. In systeminformation before version 4.26.2 there is a command injection vulnerability. Problem was fixed in version 4.26.2 with a shell string sanitation fix.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2021-09-09T01:10:11
Updated: 2024-08-04T15:56:03.706Z
Reserved: 2020-10-01T00:00:00
Link: CVE-2020-26300
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-09-09T01:15:06.930
Modified: 2024-11-21T05:19:48.310
Link: CVE-2020-26300
Redhat
No data.