Vulnerabilities > Cocoapods

DATE CVE VULNERABILITY TITLE RISK
2022-04-01 CVE-2022-21223 Argument Injection or Modification vulnerability in Cocoapods Cocoapods-Downloader
The package cocoapods-downloader before 1.6.2 are vulnerable to Command Injection via hg argument injection.
network
low complexity
cocoapods CWE-88
7.5
7.5
2022-04-01 CVE-2022-24440 Argument Injection or Modification vulnerability in Cocoapods Cocoapods-Downloader
The package cocoapods-downloader before 1.6.0, from 1.6.2 and before 1.6.3 are vulnerable to Command Injection via git argument injection.
network
low complexity
cocoapods CWE-88
7.5
7.5