漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Bidirectional Override in Dart SDK
Vulnerability Description
Bidirectional Unicode text can be interpreted and compiled differently than how it appears in editors which can be exploited to get nefarious code passed a code review by appearing benign. An attacker could embed a source that is invisible to a code reviewer that modifies the behavior of a program in unexpected ways.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
Vulnerability Type
访问控制不恰当
Vulnerability Title
Dart 安全漏洞
Vulnerability Description
Dart是一款开源的编程语言。 Dart SDK存在安全漏洞,该漏洞源于双向Unicode文本的解释和编译方式与它在编辑器中的表现不同,恶意代码可以利用这种方式让其通过编辑器代码检查,而看起来是良性的。攻击者可利用该漏洞可以嵌入对代码审查者不可见的源代码,以意想不到的方式修改程序的行为。
CVSS Information
N/A
Vulnerability Type
N/A