Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Vcs Project Subscribe
Filtered by product Vcs
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-21235 1 Vcs Project 1 Vcs 2022-04-08 6.8 MEDIUM 9.8 CRITICAL
The package github.com/masterminds/vcs before 1.13.3 are vulnerable to Command Injection via argument injection. When hg is executed, argument strings are passed to hg in a way that additional flags can be set. The additional flags can be used to perform a command injection.