Command Injection vulnerability in utils/find-opencv.js in node-opencv (aka OpenCV bindings for Node.js) prior to 6.1.0

Command Injection vulnerability in utils/find-opencv.js in node-opencv (aka OpenCV bindings for Node.js) prior to 6.1.0

CVE-2019-10061 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

utils/find-opencv.js in node-opencv (aka OpenCV bindings for Node.js) prior to 6.1.0 is vulnerable to Command Injection. It does not validate user input allowing attackers to execute arbitrary commands.

Learn more about our Cis Benchmark Audit For Bind.