An issue in GitKraken GitLens before v.14.0.0 allows an attacker to execute arbitrary code via a crafted file to the Visual Studio Codes workspace trust component.
References
Link | Resource |
---|---|
https://github.com/gitkraken/vscode-gitlens/commit/ee2a0c42a92d33059a39fd15fbbd5dd3d5ab6440 | Patch |
https://www.sonarsource.com/blog/vscode-security-markdown-vulnerabilities-in-extensions/ | Exploit Third Party Advisory |
Configurations
History
No history.
Information
Published : 2023-11-28 22:15
Updated : 2023-12-04 19:39
NVD link : CVE-2023-46944
Mitre link : CVE-2023-46944
CVE.ORG link : CVE-2023-46944
JSON object : View
Products Affected
gitkraken
- gitlens
CWE