Skip to main content

Node Config Shield

1 CVEs product

Monthly

CVE-2021-26276 npm MEDIUM POC PATCH This Month

scripts/cli.js in the GoDaddy node-config-shield (aka Config Shield) package before 0.2.2 for Node.js calls eval when processing a set command. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Node.js Information Disclosure Node Config Shield
NVD GitHub
CVSS 3.1
5.3
EPSS
1.2%
EPSS 1% CVSS 5.3
MEDIUM POC PATCH This Month

scripts/cli.js in the GoDaddy node-config-shield (aka Config Shield) package before 0.2.2 for Node.js calls eval when processing a set command. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Node.js Information Disclosure Node Config Shield
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy