Description
All versions of chrome-launcher allow execution of arbitrary commands, by controlling the $HOME environment variable in Linux operating systems.
Remediation
References
http://snyk.io/vuln/SNYK-JS-CHROMELAUNCHER-537575
Related Vulnerabilities
CVE-2021-29441 Vulnerability in maven package com.alibaba.nacos:nacos-common
CVE-2020-8203 Vulnerability in maven package org.webjars:lodash
CVE-2023-26117 Vulnerability in npm package angular
CVE-2019-10745 Vulnerability in npm package assign-deep
CVE-2022-25908 Vulnerability in npm package create-choo-electron