The macaddress module prior to 0.2.9 for Node.js is prone to an arbitrary command injection flaw, due to allowing unsanitized input to an exec (rather than execFile) call.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
node-macaddress project node-macaddress |