Snyk Language Server
1 CVEs
product
Monthly
The package snyk before 1.1064.0 are vulnerable to Code Injection when analyzing a project. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
Command Injection
Snyk Cli
Snyk Language Server
Snyk Security
NVD
GitHub
CVSS 3.1
8.8
EPSS
0.7%
CVE-2022-24441
npm
EPSS 1%
CVSS 8.8
HIGH
POC
PATCH
This Week
The package snyk before 1.1064.0 are vulnerable to Code Injection when analyzing a project. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
Command Injection
Snyk Cli
Snyk Language Server
+1
NVD
GitHub