CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-7672

mosc through 1.0.0 is vulnerable to Arbitrary Code Execution. User input provided to `properties` argument is executed by the `eval` function, resulting in code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 75.6%

CVSS Severity

CVSS v3 Score 8.6

CVSS v2 Score 7.5

References

https://snyk.io/vuln/SNYK-JS-MOSC-571492
https://snyk.io/vuln/SNYK-JS-MOSC-571492

Products affected by CVE-2020-7672

Mosc Project » Mosc » Version: 1.0.0

cpe:2.3:a:mosc_project:mosc:1.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-7672

Products

Pricing

Contact Us