Sublime Text 4 was discovered to contain a command injection vulnerability via the New Build System module.