CVE-2026-44462

Exploit

EPSS 0.44%
Veröffentlicht 28.05.2026 16:13:49
Zuletzt bearbeitet 03.06.2026 01:00:02
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Zed: Allowlist Bypass via Bash Variable Expansion Chain in Terminal Tool Permissions

Zed is a code editor. Prior to 0.229.0, Zed's terminal tool permission system can be bypassed via bash variable expansion chaining (${var@P}), allowing arbitrary command execution under an allowlisted command prefix. This vulnerability is fixed in 0.229.0.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Zed ≫ Zed Version < 0.229.0

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.44%	0.349

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
security-advisories@github.com	6.4	1.6	4.7	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:L

CWE-184 Incomplete List of Disallowed Inputs

The product implements a protection mechanism that relies on a list of inputs (or properties of inputs) that are not allowed by policy or otherwise require other action to neutralize before additional processing takes place, but the list is incomplete.

https://github.com/zed-industries/zed/security/advisories/GHSA-rqq3-p6x4-q866

Vendor Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2026-44462

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-44462

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-44462

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-44462