From 684a3a28a2848ec0d4c66946bb4a0e473e67878f Mon Sep 17 00:00:00 2001 From: Robert Schultheis Date: Mon, 25 Nov 2019 10:40:17 -0700 Subject: [PATCH] add CVE-2019-16765.json --- 2019/16xxx/CVE-2019-16765.json | 108 +++++++++++++++++++++++++++++++++ 1 file changed, 108 insertions(+) create mode 100644 2019/16xxx/CVE-2019-16765.json diff --git a/2019/16xxx/CVE-2019-16765.json b/2019/16xxx/CVE-2019-16765.json new file mode 100644 index 00000000000..bf62435f7f4 --- /dev/null +++ b/2019/16xxx/CVE-2019-16765.json @@ -0,0 +1,108 @@ +{ + "CVE_data_meta": { + "ASSIGNER": "security-advisories@github.com", + "ID": "CVE-2019-16765", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "vscode-codeql", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "< 1.0.1", + "version_value": "1.0.1" + } + ] + } + } + ] + }, + "vendor_name": "github" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "If an attacker can get a user to open a specially prepared directory tree as a workspace in Visual Studio Code with the CodeQL extension active, arbitrary code of the attacker's choosing may be executed on the user's behalf.\n\nThis is fixed in version 1.0.1 of the extension. Users should upgrade to this version using Visual Studio Code Marketplace's upgrade mechanism.\n\nAfter upgrading, the codeQL.cli.executablePath setting can only be set in the per-user settings, and not in the per-workspace settings. More information about VS Code settings can be found here." + } + ] + }, + "impact": { + "cvss": { + "attackComplexity": "HIGH", + "attackVector": "LOCAL", + "availabilityImpact": "NONE", + "baseScore": 7.4, + "baseSeverity": "HIGH", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "privilegesRequired": "NONE", + "scope": "CHANGED", + "userInteraction": "REQUIRED", + "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N", + "version": "3.1" + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-250 Execution with Unnecessary Privileges" + } + ] + }, + { + "description": [ + { + "lang": "eng", + "value": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "https://github.com/github/vscode-codeql/security/advisories/GHSA-wf4x-8mpj-r42q", + "refsource": "CONFIRM", + "url": "https://github.com/github/vscode-codeql/security/advisories/GHSA-wf4x-8mpj-r42q" + }, + { + "name": "https://github.com/github/vscode-codeql/pull/174", + "refsource": "MISC", + "url": "https://github.com/github/vscode-codeql/pull/174" + }, + { + "name": "https://github.com/github/vscode-codeql/blob/v1.0.1/CHANGELOG.md", + "refsource": "MISC", + "url": "https://github.com/github/vscode-codeql/blob/v1.0.1/CHANGELOG.md" + } + ] + }, + "source": { + "advisory": "GHSA-wf4x-8mpj-r42q", + "discovery": "UNKNOWN" + }, + "work_around": [ + { + "lang": "eng", + "value": "Manually review the workspace settings for any workspace obtained from an external source. These settings can be found in the .vscode/settings.json file within the workspace directory. Remove the configuration values for the codeQL.cli.executablePath, codeQL.cli.owner, and codeQL.cli.repository settings for the workspace.\n\nIf you wish to use the codeQL.cli.executablePath setting to indicate the location of a CodeQL CLI executable, then move this to your user settings, and check that you trust the configured path. You can access the user settings by choosing Preferences: Open User Settings from the Command Palette." + } + ] +}