Cppcheck · Cppcheck · CVE-2023-39070
**Name of the Vulnerable Software and Affected Versions**
Cppcheck version 2.12 dev
**Description**
An issue in Cppcheck allows a local attacker to execute arbitrary code via the `removeContradiction` parameter in token.cpp:1934. This issue enables the attacker to potentially gain control over the system.
**Recommendations**
For Cppcheck version 2.12 dev, as a temporary workaround, consider disabling the `removeContradiction` parameter in token.cpp until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.