CVE-2021-29658

Name of the Vulnerable Software and Affected Versions vscode-rufo extension versions prior to 0.0.4

Description The issue allows attackers to execute arbitrary binaries if the user opens a crafted workspace folder. This can be exploited when a user opens a specifically designed workspace folder, potentially leading to malicious binary execution.

Recommendations For versions prior to 0.0.4, update to version 0.0.4 or later to resolve the issue. As a temporary workaround, consider avoiding the use of crafted workspace folders until the update is applied.