CVE-2021-22195

High

Client side code execution in gitlab-vscode-extension v3.15.0 and earlier allows attacker to execute code on user system

GitLab·CWE-427·Published 2021-04-01

CVSS

7.8

EPSS

0.01

KEV

Exploits

cve.orgen

120 chars

Client side code execution in gitlab-vscode-extension v3.15.0 and earlier allows attacker to execute code on user system

NVDen

120 chars

Client side code execution in gitlab-vscode-extension v3.15.0 and earlier allows attacker to execute code on user system

NVDes

163 chars

Una ejecución de código del lado del cliente en gitlab-vscode-extension versión v3.15.0 y anterior, permite al atacante ejecutar código sobre el sistema de usuario

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P
3.1	Primary	cve.org	8.6	—	—	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H