systeminformation is an npm package that provides system and OS information library for node.js. In systeminformation before version 4.26.2 there is a command injection vulnerability. Problem was fixed in version 4.26.2 with a shell string sanitation fix.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2021-09-09T01:10:11

Updated: 2024-08-04T15:56:03.706Z

Reserved: 2020-10-01T00:00:00

Link: CVE-2020-26300

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-09-09T01:15:06.930

Modified: 2024-11-21T05:19:48.310

Link: CVE-2020-26300

cve-icon Redhat

No data.