Home > Vulnerability Database > WS-2019-0035

WhiteSource Vulnerability Database

WS-2019-0035

Good to know:

Date: March 31, 2019

Versions of opencvprior to 6.1.0 are vulnerable to Command Injection. The utils/ script find-opencv.js does not validate user input allowing attackers to execute arbitrary commands.

Language: JS

Severity Score

5.0

Related Resources (2)

Url: https://www.npmjs.com/advisories/789

Url: https://www.whitesourcesoftware.com/vulnerability-database/WS-2019-0035

Severity Score

5.0

Top Fix

Upgrade Version

Upgrade to version 6.1.0

Learn More

CVSS v2

Base Score:	5.0
Access Vector (AV):
Access Complexity (AC):
Authentication (AU):
Confidentiality (C):
Integrity (I):
Availability (A):
Additional information:

WhiteSource Vulnerability Database

We found results for “”

WS-2019-0035

Good to know:

Date: March 31, 2019

Language: JS

Severity Score

Related Resources (2)

Severity Score

Top Fix

Upgrade Version

CVSS v2

Do you need more information?