CVE-2022-24377: cycle-import-check vulnerable to Command Injection

Severity: Critical

CVSS Score: 9.8

The package cycle-import-check before 1.3.2 are vulnerable to Command Injection via the writeFileToTmpDirAndOpenIt function due to improper user-input sanitization.