Vulnerabilities > CVE-2022-25855 - Unspecified vulnerability in Create-Choo-App3 Project Create-Choo-App3
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
All versions of the package create-choo-app3 are vulnerable to Command Injection via the devInstall function due to improper user-input sanitization.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |