CVE-2023-46944

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2023-46944

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-46944.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-46944

Published

2023-11-28T22:15:06.937Z

Modified

2025-11-15T06:58:05.866243Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An issue in GitKraken GitLens before v.14.0.0 allows an attacker to execute arbitrary code via a crafted file to the Visual Studio Codes workspace trust component.

References

Affected packages

Git / github.com/gitkraken/vscode-gitlens

Affected ranges

Type: GIT
Repo: https://github.com/gitkraken/vscode-gitlens
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

ee2a0c42a92d33059a39fd15fbbd5dd3d5ab6440

Affected versions

0.*

0.0.1

0.0.2

0.0.3

0.0.4

8.*

8.3.1

v10.*

v10.0.0

v10.0.1

v10.1.0

v10.1.1

v10.1.2

v10.2.0

v10.2.1

v10.2.2

v11.*

v11.0.0

v11.0.0-alpha

v11.0.0-alpha.2

v11.0.0-beta.1

v11.0.1

v11.0.2

v11.0.3

v11.0.4

v11.0.5

v11.0.6

v11.1.1

v11.1.2

v11.1.3

v11.2.0

v11.2.1

v11.3.0

v11.4.0

v11.4.1

v11.5.0

v11.5.1

v11.6.0

v11.6.1

v11.7.0

v12.*

v12.0.0

v12.0.1

v12.0.2

v12.0.3

v12.0.4

v12.0.5

v12.0.6

v12.1.0

v12.1.1

v12.2.0

v12.2.1

v12.2.2

v13.*

v13.0.0

v13.0.1

v13.0.2

v13.0.3

v13.1.0

v13.1.1

v13.2.0

v13.3.0

v13.3.1

v13.3.2

v13.4.0

v13.5.0

v13.6.0

v3.*

v3.5.0-beta

v3.5.0-beta.2

v3.6.0-beta

v4.*

v4.0.0-beta.2

v4.0.2-beta

v4.1.0-beta

v4.1.0-beta.2

v4.4.0-beta

v5.*

v5.0.0

v5.0.0-beta

v5.0.0-beta.2

v5.1.0

v5.1.1-beta

v5.2.0

v5.2.0-beta

v5.3.0

v5.4.0

v5.5.0

v5.6.0

v5.6.1

v5.6.2

v5.6.3

v5.6.4

v5.6.5

v5.7.0

v5.7.1

v6.*

v6.0.0

v6.0.0-alpha

v6.0.0-beta

v6.0.0-beta2

v6.0.0-beta3

v6.1.0

v6.1.1

v6.1.2

v6.2.0

v6.3.0

v6.3.0-beta

v6.4.0

v6.4.0-beta

v7.*

v7.0.0

v7.1.0

v7.1.0-beta

v7.2.0

v7.3.0-beta

v7.5.0

v7.5.1

v7.5.10

v7.5.2

v7.5.3

v7.5.4

v7.5.5

v7.5.6

v7.5.7

v7.5.8

v7.5.9

v8.*

v8.0.0

v8.0.1

v8.0.2

v8.1.0

v8.1.1

v8.2.0

v8.2.0-beta

v8.2.1

v8.2.2

v8.2.3

v8.2.4

v8.3.0

v8.3.0-beta

v8.3.2

v8.3.3

v8.3.4

v8.3.5

v8.4.0

v8.4.1

v8.5.0

v8.5.1

v8.5.2

v8.5.3

v8.5.4

v8.5.5

v8.5.6

v9.*

v9.0.0

v9.0.0-beta

v9.0.1

v9.0.2

v9.0.3

v9.1.0

v9.2.0

v9.2.1

v9.2.2

v9.2.3

v9.2.4

v9.3.0

v9.4.0

v9.4.1

v9.5.0

v9.5.1

v9.6.0

v9.6.1

v9.6.2

v9.6.3

v9.7.0

v9.7.1

v9.7.2

v9.7.3

v9.7.4

v9.8.0

v9.8.1

v9.8.2

v9.8.3

v9.8.4

v9.8.5

v9.9.0

v9.9.1

v9.9.2

v9.9.3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-46944.json"