Vulnerability Details CVE-2018-16460
A command Injection in ps package versions <1.0.0 for Node.js allowed arbitrary commands to be executed when attacker controls the PID.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.037
EPSS Ranking 87.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
Products affected by CVE-2018-16460
-
cpe:2.3:a:umbraengineering:ps:0.0.1
-
cpe:2.3:a:umbraengineering:ps:0.0.2