CVE-2022-1884

Опубликовано: 15 нояб. 2024

Источник: nvd

CVSS3: 10

CVSS3: 9.8

CVSS3: 10

EPSS Низкий

Описание

A remote command execution vulnerability exists in gogs/gogs versions <=0.12.7 when deployed on a Windows server. The vulnerability arises due to improper validation of the tree_path parameter during file uploads. An attacker can set tree_path=.git. to upload a file into the .git directory, allowing them to write or rewrite the .git/config file. If the core.sshCommand is set, this can lead to remote command execution.

Ссылки

https://huntr.com/bounties/9cd4e7b7-0979-4e5e-9a1c-388b58dea76b
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:gogs:gogs:*:*:*:*:*:*:*:*

Версия до 0.12.7 (включая)

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 93%

0.09822

Низкий

10 Critical

CVSS3

9.8 Critical

CVSS3

10 Critical

CVSS3

Дефекты

CWE-78

CWE-77

Связанные уязвимости

GHSA-958j-443g-7mm7

CVSS3: 10

github

больше 3 лет назад

OS Command Injection in gogs

EPSS

Процентиль: 93%

0.09822

Низкий

10 Critical

CVSS3

9.8 Critical

CVSS3

10 Critical

CVSS3

Дефекты

CWE-78

CWE-77