CVE-2020-28430

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

12 Aug 2021, 15:15

Type	Values Removed	Values Added
CWE	~~CWE-77~~	CWE-78
Summary	~~All versions of package nuance-gulp-build-common are vulnerable to Command Injection via the index.js file. PoC: /var a = require("nuance-gulp-build-common") a.run("touch JHU")~~	REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
CPE	cpe:2.3:a:nuance-gulp-build-common_project:nuance-gulp-build-common:-:::::::*

Information

Published : 2021-02-23 16:15

Updated : 2024-02-04 21:23

NVD link : CVE-2020-28430

Mitre link : CVE-2020-28430

CVE.ORG link : CVE-2020-28430

JSON object : View

Products Affected

No product.

CWE

No CWE.

JSON object

Attach tags to CVE-2020-28430

Attach tags to `CVE-2020-28430`