Описание
HashiCorp’s go-getter library can be coerced into executing Git update on an existing maliciously modified Git Configuration, potentially leading to arbitrary code execution.
EPSS
Процентиль: 70%
0.00724
Низкий
8.4 High
CVSS3
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 8.4
ubuntu
больше 1 года назад
HashiCorp’s go-getter library can be coerced into executing Git update on an existing maliciously modified Git Configuration, potentially leading to arbitrary code execution.
CVSS3: 7.7
redhat
больше 1 года назад
HashiCorp’s go-getter library can be coerced into executing Git update on an existing maliciously modified Git Configuration, potentially leading to arbitrary code execution.
CVSS3: 8.4
msrc
больше 1 года назад
HashiCorp go-getter Vulnerable to Code Execution On Git Update Via Git Config Manipulation
CVSS3: 8.4
debian
больше 1 года назад
HashiCorp\u2019s go-getter library can be coerced into executing Git u ...
EPSS
Процентиль: 70%
0.00724
Низкий
8.4 High
CVSS3
Дефекты
CWE-77