CNNVD-202601-2504 Information

Jan 14, 2026 cve

CNNVD ID

CNNVD-202601-2504

CVE-2026-22718

CNNVD Published: 2026-01-14

Description (Chinese)

VMware Spring CLI VSCode Extension是美国威睿（VMware）公司的一个Visual Studio Code插件。 VMware Spring CLI VSCode Extension存在安全漏洞，该漏洞源于命令注入，可能导致在用户机器上执行命令。

Description (English)

VMware Spring CLI VSCode Extension is a Visual Studio Code plugin for VMware. VMware Spring CLI VSCode Extension has a security loophole, which originates from the injection of the order and may lead to the execution of the order on the user machine.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

威睿

Published

2026-01-14

Last Modified

2026-02-24

References

https://spring.io/security/cve-2026-22718

Patch

https://spring.io/security/cve-2026-22718

Share on: