Vulnerabilities > Codecov

DATE	CVE	VULNERABILITY TITLE	RISK
2022-07-13	CVE-2019-10800	Argument Injection or Modification vulnerability in Codecov Codecov-Python This affects the package codecov before 2.0.16. network low complexity codecov CWE-88	6.5
2020-07-20	CVE-2020-15123	OS Command Injection vulnerability in Codecov In codecov (npm package) before version 3.7.1 the upload method has a command injection vulnerability. network low complexity codecov CWE-78 critical	9.3
2020-02-17	CVE-2020-7597	OS Command Injection vulnerability in Codecov codecov-node npm module before 3.6.5 allows remote attackers to execute arbitrary commands.The value provided as part of the gcov-root argument is executed by the exec function within lib/codecov.js. network low complexity codecov CWE-78	8.8
2020-01-25	CVE-2020-7596	OS Command Injection vulnerability in Codecov Nodejs Uploader Codecov npm module before 3.6.2 allows remote attackers to execute arbitrary commands via the "gcov-args" argument. network low complexity codecov CWE-78	8.8

Vulnerabilities > Codecov {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Codecov"}]}