A command inject vulnerability allows an attacker to perform command injection on Windows applications that indirectly depend on the CreateProcess function when the specific conditions are satisfied.
{ "severity": "Critical", "cpes": [ "cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*" ] }