CVE-2020-27224
on github
Published
Severity
CVSS v3:
9.6 CRITICAL
CVSS v2:
9.3 HIGH
Description
In Eclipse Theia versions up to and including 1.2.0, the Markdown Preview (@theia/preview), can be exploited to execute arbitrary code.
References
Configurations
| CPE23 | Version Start | Version End | Exact Version |
|---|---|---|---|
| cpe:2.3:a:eclipse:theia:*:*:*:*:*:*:*:* | n/a | 1.2.0 (including) | * |