| Vulnerable Component Details | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Type | Namespace | Name | Version | Package URL | |||||||||
| npm | None | chrome-launcher | 0.13.4 | pkg:npm/chrome-launcher@0.13.4 | |||||||||
| Vulnerability Details | |||||||||||||
| ID | CVE-2020-7645 | ||||||||||||
| Description | All versions of chrome-launcher allow execution of arbitrary commands, by controlling the `$HOME` environment variable in Linux operating systems. | ||||||||||||
| Recommendation | Unfortunately, there is no solution available yet. | ||||||||||||
| Ratings |
|
||||||||||||
| Found By | Gitlab Gemnasium | ||||||||||||
| References / Advisories | |||||||||||||
| Weakness Enumeration | |||||||||||||