CVE-2022-24783 log
Source |
|
Severity | Critical |
Remote | Yes |
Type | Arbitrary code execution |
Description | The versions of Deno between release 1.18.0 and 1.20.2 (inclusive) are vulnerable to an attack where a malicious actor controlling the code executed in a Deno runtime could bypass all permission checks and execute arbitrary shell code. This vulnerability does not affect users of Deno Deploy. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-2664 | deno | 1.20.2-1 | 1.20.3-1 | Critical | Fixed |
References |
---|
https://github.com/denoland/deno/security/advisories/GHSA-838h-jqp6-cf2f |