Lucene search
GoogleOSV:CVE-2021-44458HistoryJan 10, 2022 - 4:15 p.m.
CVE-2021-44458
2022-01-1016:15:09
Google
osv.dev
2
Linux users running Lens 5.2.6 and earlier could be compromised by visiting a malicious website. The malicious website could make websocket connections from the victim’s browser to Lens and so operate the local terminal feature. This would allow the attacker to execute arbitrary commands as the Lens user.
| CPE | Name | Operator | Version |
|---|---|---|---|
| lens | eq | 3.0.0-rc.2 | |
| lens | eq | 5.2.6 | |
| lens | eq | 5.2.6-beta.1 | |
| lens | eq | 3.0.0-rc.1 | |
| lens | eq | 3.6.5-rc.1 | |
| lens | eq | 5.2.3 | |
| lens | eq | 5.2.6-beta.0 | |
| lens | eq | 3.0.1 | |
| lens | eq | 3.0.0 | |
| lens | eq | 2.7.0 |
Related
nvd
nvd
CVE-2021-44458
2022-01-10 16:15:09
prion
prion
Design/Logic Flaw
2022-01-10 16:15:00
cve
cve
CVE-2021-44458
2022-01-10 16:15:09
cvelist
cvelist