Description
command injection vulnerability
Recommendation
Update the systeminformation package to the latest compatible version. Followings are version details:
- Affected version(s): < 5.6.4
- Patched version(s): 5.6.4
References
Related Issues
- systeminformation has a Command Injection vulnerability in fsSize() function on Windows - CVE-2025-68154
- Command Injection Vulnerability - CVE-2021-21315
- Prototype Pollution in lodash (GHSA-p6mc-m468-83gw) 5 - CVE-2020-8203
- Prototype Pollution in lodash (GHSA-p6mc-m468-83gw) 4 - CVE-2020-8203
- Tags:
- npm
- systeminformation
Anything's wrong? Let us know Last updated on February 01, 2023