5 matches found
EUVD-2023-50478
Malicious code in bioql PyPI...
CVE-2023-46248
Cody is an artificial intelligence AI coding assistant. The Cody AI VSCode extension versions 0.10.0 through 0.14.0 are vulnerable to Remote Code Execution under certain conditions. An attacker in control of a malicious repository could modify the Cody configuration file .vscode/cody.json and...
Remote code execution
Cody is an artificial intelligence AI coding assistant. The Cody AI VSCode extension versions 0.10.0 through 0.14.0 are vulnerable to Remote Code Execution under certain conditions. An attacker in control of a malicious repository could modify the Cody configuration file .vscode/cody.json and...
CVE-2023-46248 Overwrite of builtin Cody commands facilitates RCE
Cody is an artificial intelligence AI coding assistant. The Cody AI VSCode extension versions 0.10.0 through 0.14.0 are vulnerable to Remote Code Execution under certain conditions. An attacker in control of a malicious repository could modify the Cody configuration file .vscode/cody.json and...
CVE-2023-46248
CVE-2023-46248 affects the Cody AI VSCode extension (versions 0.10.0–0.14.0). An attacker controlling a malicious repository can modify the Cody configuration file ".vscode/cody.json" and overwrite Cody commands. If a user with the extension installed opens that repository and executes a Cody com...