EPSS
Percentile
70.3%
In Eclipse Theia versions up to and including 1.2.0, the Markdown Preview (@theia/preview), can be exploited to execute arbitrary code.
github.com/eclipse-theia/theia/issues/7954
github.com/eclipse-theia/theia/pull/7971
nvd.nist.gov/vuln/detail/CVE-2020-27224
omespino.com/write-up-google-bug-bounty-xss-to-cloud-shell-instance-takeover-rce-as-root-5000-usd