Skip to main content

Shiba

1 CVEs product

Monthly

CVE-2020-7738 npm HIGH This Week

All versions of package shiba are vulnerable to Arbitrary Code Execution due to the default usage of the function load() of the package js-yaml instead of its secure replacement , safeLoad(). Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Shiba
NVD
CVSS 3.1
8.3
EPSS
1.6%
EPSS 2% CVSS 8.3
HIGH This Week

All versions of package shiba are vulnerable to Arbitrary Code Execution due to the default usage of the function load() of the package js-yaml instead of its secure replacement , safeLoad(). Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Shiba
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy