3 matches found
CVE-2024-9145
Wiz Code Visual Studio Code extension in versions 1.0.0 up to 1.5.3 and Wiz legacy Visual Studio Code extension in versions 0.13.0 up to 0.17.8 are vulnerable to local command injection if the user opens a maliciously crafted Dockerfile located in a path that has been marked as a "trusted folder"...
CVE-2024-9145 Local command injection in Wiz Code Visual Studio Code extension
Wiz Code Visual Studio Code extension in versions 1.0.0 up to 1.5.3 and Wiz legacy Visual Studio Code extension in versions 0.13.0 up to 0.17.8 are vulnerable to local command injection if the user opens a maliciously crafted Dockerfile located in a path that has been marked as a "trusted folder"...
CVE-2024-9145
The CVE-2024-9145 issue affects Wiz Code Visual Studio Code extension versions 1.0.0–1.5.3 and Wiz (legacy) Visual Studio Code extension versions 0.13.0–0.17.8. When a user opens a maliciously crafted Dockerfile located in a path marked as a “trusted folder” in Visual Studio Code and initiates a ...