Control characters are not escaped from console output. This can result in hiding input from the user which could result in the user taking an unknown, malicious action.
If you have any questions or comments about this advisory:
CPE | Name | Operator | Version |
---|---|---|---|
github.com/ipfs/go-ipfs | lt | 0.8.0 |