๐ Facebook react-dev-utils up to 11.0.3 getProcessForPort os command injection
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability, which was classified as critical, has been found in Facebook react-dev-utils up to 11.0.3 (Social Network Software). This issue affects the function getProcessForPort
. Upgrading to version 11.0.4 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version. ...