GHSA-29gp-92wp-94q8
Suggest an improvement- Source
- https://github.com/advisories/GHSA-29gp-92wp-94q8
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2019/01/GHSA-29gp-92wp-94q8/GHSA-29gp-92wp-94q8.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-29gp-92wp-94q8
- Aliases
- Published
- 2019-01-04T17:41:20Z
- Modified
- 2023-11-08T04:00:21.268782Z
- Summary
- react-dev-utils on Windows vulnerable to Remote Code Execution
- Details
-
react-dev-utilson Windows is vulnerable to remote code execution.Recommendation
Update to one of the following versions, depending on the release line that you are using. - 1.0.4 - 2.0.2 - 3.1.2 - 4.2.2 - 5.0.2 - 6.0.0-next.a671462c
- Database specific
{ "github_reviewed_at": "2020-06-16T20:51:46Z", "cwe_ids": [ "CWE-78" ], "nvd_published_at": "2018-12-31T22:29:00Z", "severity": "HIGH", "github_reviewed": true }- References
Affected packages
npm / react-dev-utils
Package
- Name
- react-dev-utils
- View open source insights on deps.dev
- Purl
- pkg:npm/react-dev-utils
npm / react-dev-utils
Package
- Name
- react-dev-utils
- View open source insights on deps.dev
- Purl
- pkg:npm/react-dev-utils
npm / react-dev-utils
Package
- Name
- react-dev-utils
- View open source insights on deps.dev
- Purl
- pkg:npm/react-dev-utils
npm / react-dev-utils
Package
- Name
- react-dev-utils
- View open source insights on deps.dev
- Purl
- pkg:npm/react-dev-utils
npm / react-dev-utils
Package
- Name
- react-dev-utils
- View open source insights on deps.dev
- Purl
- pkg:npm/react-dev-utils