CVE-2022-21191: global-modules-path: Command Injection due to missing Input Sanitization

Severity: Critical

CVSS Score: 9.8

Versions of the package global-modules-path before 3.0.0 are vulnerable to Command Injection due to missing input sanitization or other checks and sandboxes being employed to the getPath function.