← Back to CVE List
CVE-2021-3190
Published:
2021-01-26T18:16Z
Last Modified:
2024-11-21T06:21Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
The async-git package before 1.13.2 for Node.js allows OS Command Injection via shell metacharacters, as demonstrated by git.reset and git.tag. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt