MidnightBSD

Advisories for node-macaddress_project

CVE-2018-13797 HIGH

The macaddress module before 0.2.9 for Node.js is prone to an arbitrary command injection flaw, due to allowing unsanitized input to an exec (rather than execFile) call.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
node-macaddress_project node-macaddress *