CVE-2022-35975

Improper object validation allows for arbitrary code execution in GitOps Tools Extension for VSCode

Severity Score

9.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The GitOps Tools Extension for VSCode can make it easier to manage Flux objects. A specially crafted Flux object may allow for remote code execution in the machine running the extension, in the context of the user that is running VSCode. Users using the VSCode extension to manage clusters that are shared amongst other users are affected by this issue. The only safe mitigation is to update to the latest version of the extension.

La extensión de GitOps Tools para VSCode puede facilitar la administración de objetos Flux. Un objeto Flux especialmente diseñado puede permitir una ejecución de código remota en la máquina que ejecuta la extensión, en el contexto del usuario que está ejecutando VSCode. Los usuarios usando la extensión VSCode para administrar clústeres compartidos entre otros usuarios están afectados por este problema. La única mitigación segura es actualizar a la última versión de la extensión.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2022-07-15 CVE Reserved
2022-08-18 CVE Published
2024-08-03 CVE Updated
2024-11-09 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

CAPEC

References (1)

URL	Tag	Source
https://github.com/weaveworks/vscode-gitops-tools/security/advisories/GHSA-873x-829r-gxcp	Third Party Advisory

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Weave Search vendor "Weave"		Gitops Tools Search vendor "Weave" for product "Gitops Tools"				>= 0.7.0 <= 0.20.2 Search vendor "Weave" for product "Gitops Tools" and version " >= 0.7.0 <= 0.20.2"		visual_studio_code		Affected