Improper Neutralization of Special Elements used in a Command ('Command Injection') (CVE-2024-6257)
CVE编号
CVE-2024-6257
利用情况
暂无
补丁情况
N/A
披露时间
2024-06-25
漏洞描述
HashiCorp’s go-getter library can be coerced into executing Git update on an existing maliciously modified Git Configuration, potentially leading to arbitrary code execution.