Description
All versions of chrome-launcher allow execution of arbitrary commands, by controlling the $HOME environment variable in Linux operating systems.
Remediation
References
http://snyk.io/vuln/SNYK-JS-CHROMELAUNCHER-537575
Related Vulnerabilities
CVE-2021-25978 Vulnerability in npm package apostrophe
CVE-2013-2035 Vulnerability in maven package org.fusesource.hawtjni:hawtjni-runtime
CVE-2023-0835 Vulnerability in npm package markdown-pdf
CVE-2023-47324 Vulnerability in maven package org.silverpeas.core:silverpeas-core
CVE-2017-12629 Vulnerability in maven package org.apache.solr:solr-core