Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned.

Description The issue concerns the potential injection of environment variables in subprocesses on Windows. This can occur when user data is passed to a subprocess via an environment variable, allowing for the injection of invalid environment variables and command arguments. Specifically, it checks for environment variable names containing '=' and command arguments containing '0'.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.