CVE-2022-24377

Name of the Vulnerable Software and Affected Versions cycle-import-check versions prior to 1.3.2

Description The issue is related to Command Injection via the writeFileToTmpDirAndOpenIt function due to improper user-input sanitization. This allows for potential exploitation. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For versions prior to 1.3.2, update to version 1.3.2 or later to resolve the issue. As a temporary workaround, consider disabling the writeFileToTmpDirAndOpenIt function until a patch is available.