Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2021-28792
HistoryMar 18, 2021 - 4:15 p.m.

CVE-2021-28792

2021-03-1816:15:14
Google
osv.dev
5
swift development environment
visual studio code
remote code execution
crafted workspace
configuration value

AI Score

8.1

Confidence

High

EPSS

0.002

Percentile

60.2%

JSON

The unofficial Swift Development Environment extension before 2.12.1 for Visual Studio Code allows remote attackers to execute arbitrary code by constructing a malicious workspace with a crafted sourcekit-lsp.serverPath, swift.languageServerPath, swift.path.sourcekite, swift.path.sourcekiteDockerMode, swift.path.swift_driver_bin, or swift.path.shell configuration value that triggers execution upon opening the workspace.

Related

nvd 1
prion 1
cve 1
cvelist 1
nvd
nvd
CVE-2021-28792
2021-03-18 16:15:14
prion
prion
Design/Logic Flaw
2021-03-18 16:15:00
cve
cve
CVE-2021-28792
2021-03-18 16:15:14
cvelist
cvelist
CVE-2021-28792
2021-03-18 15:04:47

AI Score

8.1

Confidence

High

EPSS

0.002

Percentile

60.2%

JSON
Related for OSV:CVE-2021-28792
nvd1prion1cve1cvelist1