CVE-2023-46944

CVE-2023-46944

EPSS 1.2%

An issue in GitKraken GitLens before v.14.0.0 allows an attacker to execute arbitrary code via a crafted file to the Visual Studio Codes workspace trust component.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/gitkraken/vscode-gitlens/commit/ee2a0c42a92d33059a39fd15fbbd5dd3d5ab6440 https://www.sonarsource.com/blog/vscode-security-markdown-vulnerabilities-in-extensions/