CVE-2020-7645

Vulnerable Component Details
Type Namespace Name Version Package URL
npm None chrome-launcher 0.13.4 pkg:npm/chrome-launcher@0.13.4
Vulnerability Details
ID CVE-2020-7645
Description All versions of chrome-launcher allow execution of arbitrary commands, by controlling the `$HOME` environment variable in Linux operating systems.
Recommendation Unfortunately, there is no solution available yet.
Ratings
Severity Score Method Vector Source
9.8 CVSSv3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Found By Gitlab Gemnasium
References / Advisories
Weakness Enumeration