CVE-2020-7596

Summary

Codecov npm module before 3.6.2 allows remote attackers to execute arbitrary commands via the "gcov-args" argument.

Affected Software

VendorProductVersion RangeStatus
n/acodecov npm moduleAll versions prior to version 3.6.2affected

Weaknesses

  • Command Injection

ADP Enrichment

CVE Program Container

Additional References

References