CVE-2020-11079

Published: 2020-05-28T19:15Z

Last Modified: 2024-11-21T04:56Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

node-dns-sync (npm module dns-sync) through 0.2.0 allows execution of arbitrary commands . This issue may lead to remote code execution if a client of the library calls the vulnerable method with untrusted input. This has been fixed in 0.2.1. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt