cvedb.io
CVE-2022-21129
HIGH · CVSS 7.4
EPSS exploitation probability: 0%
Published 2023-01-31T05:15:11.060 · Last modified 2026-06-17T04:25:34.767

Summary

Versions of the package nemo-appium before 0.0.9 are vulnerable to Command Injection due to improper input sanitization in the 'module.exports.setup' function. **Note:** In order to exploit this vulnerability appium-running 0.1.3 has to be installed as one of nemo-appium dependencies.

Affected products

paypal — nemo-appium

Does this affect you?

Add your gear to cvedb and we'll alert you only when paypal ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.