CVE-2021-28793
N/A
N/A
Summary
vscode-restructuredtext before 146.0.0 contains an incorrect access control vulnerability, where a crafted project folder could execute arbitrary binaries via crafted workspace configuration.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/vscode-restructuredtext/vscode-restructuredtext/releases
- https://github.com/vscode-restructuredtext/vscode-restructuredtext/releases/tag/147.0.0
- https://github.com/vscode-restructuredtext/vscode-restructuredtext/commit/1dd3e878a5559e3dfe0e48f145c90418b208c5af
- https://vuln.ryotak.me/advisories/37
References
- https://github.com/vscode-restructuredtext/vscode-restructuredtext/releases
- https://github.com/vscode-restructuredtext/vscode-restructuredtext/releases/tag/147.0.0
- https://github.com/vscode-restructuredtext/vscode-restructuredtext/commit/1dd3e878a5559e3dfe0e48f145c90418b208c5af
- https://vuln.ryotak.me/advisories/37
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.