CVE-2021-3190 Blast Radius

CRITICAL • CVSS 9.8The async-git package before 1.13.2 for Node.js allows OS Command Injection via shell metacharacters, as demonstrated by git.reset and git.tag.

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2021-3190.

Start Free Scan →← Back to CVE-2021-3190