CVE-2020-7712

Summary

This affects the package json before 10.0.0. It is possible to inject arbritary commands using the parseLookup function.

Affected Software

VendorProductVersion RangeStatus
n/ajsonunspecified < 10.0.0affected

Weaknesses

  • Command Injection

ADP Enrichment

CVE Program Container

Additional References

References