CVE-2021-4326

Publication date

2023-02-22 15:21:06

Family

Zowe

State

PUBLISHED

Description

A vulnerability in Imperative framework which allows already-privileged local actors to execute arbitrary shell commands via plugin install/update commands, or maliciously formed environment variables. Impacts Zowe CLI.