Описание
A flaw was found in Mercurial before 4.9. It was possible to use symlinks and subrepositories to defeat Mercurial's path-checking logic and write files outside a repository.
Ссылки
- Issue TrackingVendor Advisory
- Third Party Advisory
- Third Party Advisory
- Issue TrackingVendor Advisory
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.9 (исключая)
cpe:2.3:a:mercurial:mercurial:*:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
EPSS
Процентиль: 73%
0.00764
Низкий
5.1 Medium
CVSS3
5.9 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-22
CWE-59
Связанные уязвимости
CVSS3: 5.1
ubuntu
почти 7 лет назад
A flaw was found in Mercurial before 4.9. It was possible to use symlinks and subrepositories to defeat Mercurial's path-checking logic and write files outside a repository.
CVSS3: 5.1
redhat
почти 7 лет назад
A flaw was found in Mercurial before 4.9. It was possible to use symlinks and subrepositories to defeat Mercurial's path-checking logic and write files outside a repository.
CVSS3: 5.1
debian
почти 7 лет назад
A flaw was found in Mercurial before 4.9. It was possible to use symli ...
EPSS
Процентиль: 73%
0.00764
Низкий
5.1 Medium
CVSS3
5.9 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-22
CWE-59