EPSS
Percentile
70.8%
chrome-launcher prior to 0.13.2 is subject to OS Command Injection via the $HOME environment variable in Linux operating systems. This issue is patched in version 0.13.2.
$HOME
snyk.io/vuln/SNYK-JS-CHROMELAUNCHER-537575
github.com/GoogleChrome/chrome-launcher
github.com/GoogleChrome/chrome-launcher/pull/197
nvd.nist.gov/vuln/detail/CVE-2020-7645