GHSA-q226-w36v-hhxvLowCVSS 5.3
A security vulnerability has been detected in antlr ANTLR4 up to 4.13.2. Affected by this...
🔗 CVE IDs covered (1)
📋 Description
A security vulnerability has been detected in antlr ANTLR4 up to 4.13.2. Affected by this vulnerability is the function GoTarget of the file tool/src/org/antlr/v4/codegen/target/GoTarget.java of the component gofmt. The manipulation leads to command injection. The attack can only be performed from a local environment. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.