Security Advisory

CVE-2021-4435

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-04 19:16:35

Last updated 2025-06-17 14:29:17

Assigner fedora

State PUBLISHED

Description

An untrusted search path vulnerability was found in Yarn. When a victim runs certain Yarn commands in a directory with attacker-controlled content, malicious commands could be executed in unexpected ways.

← Browse all CVEs View on cve.org ↗