CVE-2020-16526 – **RESERVED**https://github.com/hacksparrow/safe-eval safe-eval 0.4.1 is affected by: Sandb …

CVE-2020-16526 – RESERVEDhttps://github.com/hacksparrow/safe-eval safe-eval 0.4.1 is affected by: Sandb …

12 January 2021

Vuln ID: CVE-2020-16526

Published: 2021-01-12 22:15:12Z

Description: **RESERVED**https://github.com/hacksparrow/safe-eval safe-eval 0.4.1 is affected by: Sandbox Escape. The impact is: execute arbitrary code (remote). The component is: https://github.com/hacksparrow/safe-eval/blob/master/index.js. Â¶Â¶ The safe-eval module describes itself as a safer version of eval. By accessing the object constructors, un-sanitized user input can access the entire standard library and effectively break out of the sandbox.

Source: NVD.NIST.GOV

Date:

12 January 2021

Categorie(s):

NVD

Tag(s):

NVD

Meta opens its mixed-reality Horizon OS to other headset makers24 April 2024
Management company settles for $18.4M after nuclear weapons plant staff fudged their timesheets24 April 2024
Securing millions of developers through 2FA24 April 2024
South Korean defense firms subjected to North Korean APT attacks24 April 2024
Multiple MySQL2 Flaw Let Attackers Arbitrary Code Remotely24 April 2024