7 matches found
EUVD-2024-52974
Malicious code in bioql PyPI...
CVE-2024-56083
Cognition Devin before 2024-12-12 provides write access to code by an attacker who discovers the https://vscode-randomlygeneratedstring.devinapps.com URL aka the VSCode live share URL for a specific "Use Devin's Machine" session. For example, this URL may be discovered if a customer posts a...
CVE-2024-56083
Cognition Devin before 2024-12-12 provides write access to code by an attacker who discovers the https://vscode-randomlygeneratedstring.devinapps.com URL aka the VSCode live share URL for a specific "Use Devin's Machine" session. For example, this URL may be discovered if a customer posts a...
Cognition Devin 安全漏洞
Cognition Devin is an AI software engineer at Cognition. A security vulnerability exists in versions of Cognition Devin prior to 2024-12-12, which stems from a vulnerability that could provide an attacker with write access to code...
CVE-2024-56083
Cognition Devin before 2024-12-12 provides write access to code by an attacker who discovers the https://vscode-randomlygeneratedstring.devinapps.com URL aka the VSCode live share URL for a specific "Use Devin's Machine" session. For example, this URL may be discovered if a customer posts a...
CVE-2024-56083
Cognition Devin before 2024-12-12 provides write access to code by an attacker who discovers the https://vscode-randomlygeneratedstring.devinapps.com URL aka the VSCode live share URL for a specific "Use Devin's Machine" session. For example, this URL may be discovered if a customer posts a...
CVE-2024-56083
The CVE-2024-56083 entry concerns Cognition Devin prior to 2024-12-12, where an attacker who discovers the VSCode Live Share URL used for a specific "Use Devin's Machine" session can obtain write access to the code. Affected component is Devin’s live‑share workflow; the underlying issue is URL‑le...