Node Mpv
1 CVEs
product
Monthly
node-mpv through 1.4.3 is vulnerable to Command Injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Command Injection
Node Mpv
NVD
GitHub
CVSS 3.1
9.8
EPSS
4.4%
CVE-2020-7632
npm
EPSS 4%
CVSS 9.8
CRITICAL
POC
Act Now
node-mpv through 1.4.3 is vulnerable to Command Injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Command Injection
Node Mpv
NVD
GitHub