CVE-2022-21191
Description
Versions of the package global-modules-path before 3.0.0 are vulnerable to Command Injection due to missing input sanitization or other checks and sandboxes being employed to the getPath function.
References
Broken LinkThird Party Advisory
Third Party Advisory
Third Party Advisory
PatchThird Party Advisory
CvssV3 impact
Could not find any metrics
CvssV2 impact
Could not find any metrics