CVE-2020-15362

wifiscanner.js in thingsSDK WiFi Scanner 1.0.1 allows Code Injection because it can be used with options to overwrite the default executable/binary path and its arguments. An attacker can abuse this functionality to execute arbitrary code.
References
Link Resource
https://github.com/thingsSDK/wifiscanner/issues/1 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:thingssdk:wifiscanner:1.0.1:*:*:*:*:node.js:*:*

Information

Published : 2020-06-29 05:15

Updated : 2021-07-21 11:39


NVD link : CVE-2020-15362

Mitre link : CVE-2020-15362

Products Affected
No products.
CWE