CVE-2022-25865 | Microsoft workspace-tools up to 0.18.3 git fetchRemoteBranch remote/remoteBranch argument injection (ID 103)

May 14, 2022

A vulnerability was found in Microsoft workspace-tools up to 0.18.3. It has been declared as critical. This vulnerability affects the function fetchRemoteBranch of the component git Handler. The manipulation of the argument remote/remoteBranch leads to privilege escalation.

This vulnerability was named CVE-2022-25865. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More

← CVE-2022-1702 | SonicWALL SMA1000 up to 12.4.0/12.4.1-02965 Link redirect (SNWLID-2022-0009)
CVE-2022-22282 | SonicWALL SMA1000 up to 12.4.0/12.4.1-02965 HTTP Connection access control (SNWLID-2022-0009) →