OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-02-13 21:18:11 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
e8f33f7e5f1839dc04b222b2f8a1c69fc56cc8b1
advisory-db/crates/bat/RUSTSEC-2021-0106.md
Sergey "Shnatsel" Davidoff d202965dcb Add GHSA alias to RUSTSEC-2021-0106 (#1039)
2021-09-10 16:11:09 +00:00

536 B
Raw Blame History 

[advisory]
id = "RUSTSEC-2021-0106"
package = "bat"
date = "2021-07-15"
url = "https://nvd.nist.gov/vuln/detail/CVE-2021-36753"
categories = ["code-execution"]
cvss = "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
aliases = ["CVE-2021-36753", "GHSA-p24j-h477-76q3"]
[affected]
os = ["windows"]
[versions]
patched = [">= 0.18.2"]

Uncontrolled Search Path Element in sharkdp/bat

bat on windows before 0.18.2 executes programs named less.exe from the current working directory. This can lead to unintended code execution.