Do your applications use this vulnerable package?
Test your applications
Overview
terminal-share
is a tool for sharing terminal session over http.
Affected versions of the package are vulnerable to Arbitrary File Write.
Remediation
There is no fix version for terminal-share
.
References
CVSS Score
7.3
high severity
-
Attack VectorNetwork
-
Attack ComplexityLow
-
Privileges RequiredNone
-
User InteractionNone
-
ScopeUnchanged
-
ConfidentialityLow
-
IntegrityLow
-
AvailabilityLow
- Credit
- Liang Gong
- CWE
- CWE-626
- Snyk ID
- npm:terminal-share:20170510
- Disclosed
- 15 Mar, 2018
- Published
- 15 Mar, 2018