CVE-2019-1351

Опубликовано: 10 дек. 2019

Источник: redhat

CVSS3: 0

EPSS Средний

Описание

A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths, aka 'Git for Visual Studio Tampering Vulnerability'.

Отчет

This issue did not affect the versions of git as shipped with Red Hat Enterprise Linux 6, 7, and 8 as this is a Windows only issue and it does not affect the Linux versions of git.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	git	Not affected
Red Hat Enterprise Linux 7	git	Not affected
Red Hat Enterprise Linux 8	git	Not affected
Red Hat Software Collections	rh-git218-git	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Дефект:

CWE-20

https://bugzilla.redhat.com/show_bug.cgi?id=1781960git: Git mistakes some paths for relative paths allowing writing outside of the worktree while cloning

EPSS

Процентиль: 95%

0.17105

Средний

0 Low

CVSS3

Связанные уязвимости

CVE-2019-1351

CVSS3: 7.5

ubuntu

больше 5 лет назад

A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths, aka 'Git for Visual Studio Tampering Vulnerability'.

CVE-2019-1351

CVSS3: 7.5

nvd

больше 5 лет назад

A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths, aka 'Git for Visual Studio Tampering Vulnerability'.

CVE-2019-1351

msrc

почти 6 лет назад

Git for Visual Studio Tampering Vulnerability

CVE-2019-1351

CVSS3: 7.5

debian

больше 5 лет назад

A tampering vulnerability exists when Git for Visual Studio improperly ...

GHSA-74x9-89m7-944x

github

больше 3 лет назад

A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths, aka 'Git for Visual Studio Tampering Vulnerability'.

EPSS

Процентиль: 95%

0.17105

Средний

0 Low

CVSS3