CVE-2021-22539External Control of File Name or Path in Google Bazel

CWE-73External Control of File Name or PathCWE-668Resource Exposure1 documents1 sources
Severity
7.8HIGHNVD
EPSS
0.1%
top 80.60%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Google BazelGoogle LLC Vscode-bazel
Timeline
PublishedApr 16

Description

An attacker can place a crafted JSON config file into the project folder pointing to a custom executable. VScode-bazel allows the workspace path to lint *.bzl files to be set via this config file. As such the attacker is able to execute any executable on the system through vscode-bazel. We recommend upgrading to version 0.4.1 or above.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5google_llc/vscode-bazelunspecified0.4.0
NVDgoogle/bazel0.1.00.4.1