Skip to main content

Kill Port

1 CVEs product

Monthly

CVE-2019-5414 npm HIGH POC PATCH MAL This Week

If an attacker can control the port, which in itself is a very sensitive value, they can inject arbitrary OS commands due to the usage of the exec function in a third-party module kill-port < 1.3.2. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Command Injection Kill Port
NVD
CVSS 3.0
8.1
EPSS
1.9%
EPSS 2% CVSS 8.1
HIGH POC PATCH This Week

If an attacker can control the port, which in itself is a very sensitive value, they can inject arbitrary OS commands due to the usage of the exec function in a third-party module kill-port < 1.3.2. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Command Injection Kill Port
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy