CVE-2020-7604
CRITICALpulverizr < 0.7.0 - OS Command Injection via Unsanitized Filename in lib/job.js
Title source: llmDescription
pulverizr through 0.7.0 allows execution of arbitrary commands. Within "lib/job.js", the variable "filename" can be controlled by the attacker. This function uses the variable "filename" to construct the argument of the exec call without any sanitization. In order to successfully exploit this vulnerability, an attacker will need to create a new file with the same name as the attack command.
References (1)
Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://snyk.io/vuln/SNYK-JS-PULVERIZR-560122
Scores
CVSS v3
9.8
EPSS
0.0251
EPSS Percentile
82.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-78
Status
published
Products (2)
npm/pulverizr
0npm
pulverizr_project/pulverizr
< 0.7.0
Published
Mar 15, 2020
Tracked Since
Feb 18, 2026