Description
appium-desktop v1.14.1 and prior is vulnerable to OS Command Injection.
Recommendation
No fix is available yet. Followings are affected versions:
- <= 1.14.1
References
Related Issues
- chromedriver Command Injection vulnerability - CVE-2023-26156
- systeminformation SSID Command Injection Vulnerability - CVE-2023-42810
- matrix-appservice-irc IRC command injection via admin commands containing newlines - CVE-2023-38690
- CouchAuth host header injection vulnerability leaks the password reset token - CVE-2023-39655
- Tags:
- npm
- appium-desktop
Anything's wrong? Let us know Last updated on November 07, 2023