CVE-2022-22984 - Command Injection in Snyk CLI and Plugins — Practical Risk & Exploit Explained
In 2022, multiple Snyk CLI plugins and core tools were found to be vulnerable to command injection attacks due to an incomplete fix for CVE-2022-40764.