CVE-2020-28433

Name of the Vulnerable Software and Affected Versions node-latex-pdf versions all

Description A command injection issue affects the package. This allows for potential exploitation. The estimated number of potentially affected devices is not provided.

Recommendations For all versions, consider restricting the use of the package until a fix is available. As a temporary workaround, avoid using the package in environments where command injection could be exploited. At the moment, there is no information about a newer version that contains a fix for this issue.