Vulnerabilities > CVE-2022-25644 - Unspecified vulnerability in Get-Process-By-Name Project Get-Process-By-Name

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
get-process-by-name-project
critical

Summary

All versions of package @pendo324/get-process-by-name are vulnerable to Arbitrary Code Execution due to improper sanitization of getProcessByName function.

Vulnerable Configurations

Part Description Count
Application
Get-Process-By-Name_Project
1