CVE-2021-22195

Summary

Client side code execution in gitlab-vscode-extension v3.15.0 and earlier allows attacker to execute code on user system

Affected Software

VendorProductVersion RangeStatus
GitLabgitlab-vscode-extension<=3.15.0affected

Weaknesses

  • Improper neutralization of special elements used in a command ('command injection') in gitlab-vscode-extension

ADP Enrichment

CVE Program Container

Additional References

References