Описание
An arbitrary code execution vulnerability exists in the git functionality of Truffle Security Co. TruffleHog 3.90.2. A specially crafted repository can lead to a arbitrary code execution. An attacker can provide a malicious respository to trigger this vulnerability.
EPSS
Процентиль: 4%
0.00018
Низкий
7.8 High
CVSS3
Дефекты
CWE-829
Связанные уязвимости
CVSS3: 7.8
github
4 месяца назад
An arbitrary code execution vulnerability exists in the git functionality of Truffle Security Co. TruffleHog 3.90.2. A specially crafted repository can lead to a arbitrary code execution. An attacker can provide a malicious respository to trigger this vulnerability.
EPSS
Процентиль: 4%
0.00018
Низкий
7.8 High
CVSS3
Дефекты
CWE-829