-
CVSS Score
-Basic Information
CVE ID
-
GHSA ID
-
EPSS Score
-
CWE
-
Published
-
Updated
-
KEV Status
-
Technology
-
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AI
GoGoMiggo AIRoot Cause AnalysisThe vulnerability stems from writing files using unvalidated ObjectName parameters. The key evidence is:
| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| github.com/hashicorp/vault-csi-provider | go | < 0.0.6 | 0.0.6 |
| github.com/Azure/secrets-store-csi-driver-provider-azure | go | < 0.0.10 | 0.0.10 |
| github.com/GoogleCloudPlatform/secrets-store-csi-driver-provider-gcp | go | < 0.2.0 | 0.2.0 |
Ongoing coverage of React2Shell