CVE-2022-0671

Published
View on NVD ↗
CVSS v3
9.1
CRITICAL
CVSS v2
6.4
MEDIUM
Affected
2
PROJECTS

Description

A flaw was found in vscode-xml in versions prior to 0.19.0. Schema download could lead to blind SSRF or DoS via a large file.

redhat-developer/vscode-xml
redhat-developer/vscode-xml
Editing XML in Visual Studio Code made easy
GitHubGitHub
319
eclipse-lemminx/lemminx
eclipse-lemminx/lemminx
XML Language Server
GitHubGitHub
354