CVE-2020-12265 Blast Radius

CRITICAL • CVSS 9.8The decompress package before 4.2.1 for Node.js is vulnerable to Arbitrary File Write via ../ in an archive member, when a symlink is used, because of…

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2020-12265.

Start Free Scan →← Back to CVE-2020-12265