docker-cli-js@2.3.0 vulnerabilities

A node.js wrapper for the docker command line interface CLI

Direct Vulnerabilities

Known vulnerabilities in the docker-cli-js package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • C
Arbitrary Code Execution

Affected versions of this package are vulnerable to Arbitrary Code Execution. If the command parameter of the Docker.command method can at least be partially controlled by a user, they will be in a position to execute any arbitrary OS commands on the host system.

How to fix Arbitrary Code Execution?

There is no fixed version for docker-cli-js.

*