{"id":"CVE-2019-10061","details":"utils/find-opencv.js in node-opencv (aka OpenCV bindings for Node.js) prior to 6.1.0 is vulnerable to Command Injection. It does not validate user input allowing attackers to execute arbitrary commands.","aliases":["GHSA-mc7w-4cjf-c973"],"modified":"2026-04-11T08:55:41.571587Z","published":"2019-03-26T01:29:00.710Z","references":[{"type":"ADVISORY","url":"https://www.npmjs.com/advisories/789"},{"type":"FIX","url":"https://github.com/peterbraden/node-opencv/commit/81a4b8620188e89f7e4fc985f3c89b58d4bcc86b"},{"type":"FIX","url":"https://github.com/peterbraden/node-opencv/commit/aaece6921d7368577511f06c94c99dd4e9653563"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/peterbraden/node-opencv","events":[{"introduced":"0"},{"fixed":"81a4b8620188e89f7e4fc985f3c89b58d4bcc86b"}]},{"type":"GIT","repo":"https://github.com/peterbraden/node-opencv","events":[{"introduced":"0"},{"fixed":"aaece6921d7368577511f06c94c99dd4e9653563"}]},{"type":"GIT","repo":"https://github.com/peterbraden/node-opencv","events":[{"introduced":"0"},{"fixed":"81a4b8620188e89f7e4fc985f3c89b58d4bcc86b"}]},{"type":"GIT","repo":"https://github.com/peterbraden/node-opencv","events":[{"introduced":"0"},{"fixed":"aaece6921d7368577511f06c94c99dd4e9653563"}]}],"versions":["v0.4.0","v3.0.0","v6.0.0"],"database_specific":{"vanir_signatures":[{"signature_type":"Line","target":{"file":"src/FaceRecognizer.h"},"id":"CVE-2019-10061-4c5c5caa","source":"https://github.com/peterbraden/node-opencv/commit/aaece6921d7368577511f06c94c99dd4e9653563","digest":{"line_hashes":["112452988723884673506501273598000269917","188992419719563020502915929919504129267","273346043374247195419051745256349540325","187460271573234866350606439562746424139"],"threshold":0.9},"signature_version":"v1","deprecated":false}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-10061.json","vanir_signatures_modified":"2026-04-11T08:55:41Z","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"6.1.0"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}