CVE-2019-10061

Published: Mar 26, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

utils/find-opencv.js in node-opencv (aka OpenCV bindings for Node.js) prior to 6.1.0 is vulnerable to Command Injection. It does not validate user input allowing attackers to execute arbitrary commands.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.npmjs.com/advisories/789

x_refsource_MISC

https://github.com/peterbraden/node-opencv/commit/81a4b8620188e89f7e4fc985f3c89b58d4bcc86b

x_refsource_MISC

https://github.com/peterbraden/node-opencv/commit/aaece6921d7368577511f06c94c99dd4e9653563

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-10061

Description

Affected Products

References