Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2020-28469

Published: 03/06/2021 Updated: 29/03/2022
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 446
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

This affects the package glob-parent prior to 5.1.2. The enclosure regex used to check for strings ending in enclosure containing path separator.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

gulpjs glob-parent

oracle communications cloud native core policy 1.14.0

Vendor Advisories

Red Hat: Moderate: nodejs and nodejs-nodemon security and bug fix update
Synopsis Moderate: nodejs and nodejs-nodemon security and bug fix update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for nodejs and nodejs-nodemon is now available for Red Hat Enterprise Linux 9Red Hat Produ ...
Red Hat: Moderate: nodejs:14 security, bug fix, and enhancement update
Synopsis Moderate: nodejs:14 security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for the nodejs:14 module is now available for Red Hat Enterprise Linux 8Red Hat Product Secu ...

Github Repositories

https://github.com/aminekun90/mdns_listener_advanced

Simple mDNS Listener to add and listen .local hostnames in your network compatible with zeroconf, bonjour, avahi

mDNS Listener Advanced ⚠️ Major update Since version 300 this package is using a Typescript Implementation and it is fully tested on Mac OS 141 and windows 11 and ubuntu 18 If you have any issue feel free to open an issue here Advanced mDNS Listener to add and listen local hostnames in your network compatible with zeroconf, bonjour, avahi I recommand using this py

https://github.com/BlackChaose/my_snippets

my snippets

сборник сниппетов страница: blackchaosegithubio/my_snippets/ структура /data/*xml - сборники сниппетов (можно подключить например в phpstorm) /indexhtml - файл страницы, подключенной к "github pages" /appjs - скрипт чтения сниппетов

References

CWE-400https://github.com/gulpjs/glob-parent/pull/36https://snyk.io/vuln/SNYK-JS-GLOBPARENT-1016905https://github.com/gulpjs/glob-parent/blob/6ce8d11f2f1ed8e80a9526b1dc8cf3aa71f43474/index.js%23L9https://github.com/gulpjs/glob-parent/releases/tag/v5.1.2https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1059092https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBES128-1059093https://www.oracle.com/security-alerts/cpujan2022.htmlhttps://nvd.nist.govhttps://access.redhat.com/errata/RHSA-2022:6595https://github.com/aminekun90/mdns_listener_advanced
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228CVE-2024-20361log injectionbypassCVE-2024-4985CVE-2024-35223CVE-2024-29849CVE-2024-31893IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook