The macaddress module before 0.2.9 for Node.js is prone to an arbitrary command injection flaw, due to allowing unsanitized input to an exec (rather than execFile) call.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| macaddress(npm) | 0 | 0.2.9 | N/A |
CVSS Metrics
