Vulnerabilities > Linaro > Lava > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-11-18 CVE-2022-45132 Code Injection vulnerability in Linaro Lava
In Linaro Automated Validation Architecture (LAVA) before 2022.11.1, remote code execution can be achieved through user-submitted Jinja2 template.
network
low complexity
linaro CWE-94
critical
 9.8
9.8