CVE-2020-8178

Summary

Insufficient input validation in npm package jison <= 0.4.18 may lead to OS command injection attacks.

Affected Software

VendorProductVersion RangeStatus
n/ajisonNot Fixedaffected

Weaknesses

  • CWE-78: OS Command Injection (CWE-78)

ADP Enrichment

CVE Program Container

Additional References

References