CVE-2022-21129
Published
CVSS v3
7.4
HIGH
CVSS v2
N/A
Affected
1
PROJECT
Description
Versions of the package nemo-appium before 0.0.9 are vulnerable to Command Injection due to improper input sanitization in the 'module.exports.setup' function. **Note:** In order to exploit this vulnerability appium-running 0.1.3 has to be installed as one of nemo-appium dependencies.
Nemo plugin to start an appium server during nemo startup, kill upon driver.quit
GitHub