Description
An issue was discovered in the crunch function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.
Remediation
References
https://github.com/shenzhim/aaptjs/issues/2
Related Vulnerabilities
CVE-2020-7636 Vulnerability in npm package adb-driver
CVE-2016-8749 Vulnerability in maven package org.apache.camel:camel-jacksonxml
CVE-2022-43183 Vulnerability in maven package com.xuxueli:xxl-job-core
CVE-2021-44832 Vulnerability in maven package org.apache.logging.log4j:log4j-core
CVE-2022-36097 Vulnerability in maven package org.xwiki.platform:xwiki-platform-attachment-ui