CVE-2020-8186

A command injection vulnerability in the `devcert` module may lead to remote code execution when users of the module pass untrusted input to the `certificateFor` function.
References
Link Resource
https://hackerone.com/reports/863544 Exploit Issue Tracking
Configurations

Configuration 1

cpe:2.3:a:devcert_project:devcert:1.1.0:*:*:*:*:node.js:*:*

Information

Published : 2020-07-10 04:15

Updated : 2021-10-07 05:13


NVD link : CVE-2020-8186

Mitre link : CVE-2020-8186

Products Affected
No products.
CWE