Vulnerabilities/

Command Injection Vulnerability in systeminformation

Severity:: High

Description

command injection vulnerability

Recommendation

Update the systeminformation package to the latest compatible version. Followings are version details:

Affected version(s): < 5.6.4
Patched version(s): 5.6.4

References

Related Issues

Command Injection Vulnerability - CVE-2021-21315
systeminformation has a Command Injection vulnerability in fsSize() function on Windows - CVE-2025-68154
Systeminformation has command injection vulnerability in getWindowsIEEE8021x (SSID) - CVE-2024-56334
Command Injection Vulnerability in systeminformation (GHSA-m57p-p67h-mq74) - CVE-2020-26274

Tags:: npm; systeminformation

Anything's wrong? Let us know Last updated on February 01, 2023