CVE-2022-41943

Published November 22nd, 2022

View on NVD ↗

CVSS v3

CRITICAL

CVSS v2

N/A

Affected

PROJECT

Description

sourcegraph is a code intelligence platform. As a site admin it was possible to execute arbitrary commands on Gitserver when the experimental `customGitFetch` feature was enabled. This experimental feature has now been disabled by default. This issue has been patched in version 4.1.0.

sourcegraph/sourcegraphUNAVAILABLE

Code AI platform with Code Search & Cody

GitHub

10K