Postman: >> Postman >> 10.18.3 Security Vulnerabilities
An issue in Postman version 10.22 and before on macOS allows a remote attacker to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings. NOTE: the vendor states "we dispute the report's accuracy ... the configuration does not enable remote code execution.."
CVSS Score
9.8
EPSS Score
0.101
Published
2024-01-28