CVE-2020-28451

This affects the package image-tiler before 2.0.2.
Configurations

Configuration 1 (hide)

cpe:2.3:a:image-tiler_project:image-tiler:*:*:*:*:*:node.js:*:*

History

06 Aug 2022, 02:43

Type Values Removed Values Added
References (MISC) https://github.com/MrP/image-tiler/commit/f4a0b13a4bf43655fc4013e04bbceaf77aecbeb8 - (MISC) https://github.com/MrP/image-tiler/commit/f4a0b13a4bf43655fc4013e04bbceaf77aecbeb8 - Patch, Third Party Advisory
References (MISC) https://security.snyk.io/vuln/SNYK-JS-IMAGETILER-1051029 - (MISC) https://security.snyk.io/vuln/SNYK-JS-IMAGETILER-1051029 - Exploit, Patch, Third Party Advisory
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
First Time Image-tiler Project
Image-tiler Project image-tiler
CPE cpe:2.3:a:image-tiler_project:image-tiler:*:*:*:*:*:node.js:*:*
CWE CWE-77

02 Aug 2022, 15:23

Type Values Removed Values Added
New CVE

Information

Published : 2022-08-02 14:15

Updated : 2022-08-06 02:43


NVD link : CVE-2020-28451

Mitre link : CVE-2020-28451


JSON object : View

Products Affected

image-tiler_project

  • image-tiler
CWE
CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')