Skip to main content

Ripgrep

1 CVEs product

Monthly

CVE-2021-3013 Cargo CRITICAL PATCH Act Now

ripgrep before 13 on Windows allows attackers to trigger execution of arbitrary programs from the current working directory via the -z/--search-zip or --pre flag. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Microsoft Information Disclosure Ripgrep
NVD GitHub
CVSS 3.1
9.8
EPSS
1.9%
EPSS 2% CVSS 9.8
CRITICAL PATCH Act Now

ripgrep before 13 on Windows allows attackers to trigger execution of arbitrary programs from the current working directory via the -z/--search-zip or --pre flag. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Microsoft Information Disclosure Ripgrep
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy