Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2019-1354

Опубликовано: 10 дек. 2019
Источник: redhat
CVSS3: 0
EPSS Средний

Описание

A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1350, CVE-2019-1352, CVE-2019-1387.

Отчет

This issue did not affect the versions of git as shipped with Red Hat Enterprise Linux 6, 7, and 8 as this is a Windows only issue and it does not affect the Linux versions of git.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6gitNot affected
Red Hat Enterprise Linux 7gitNot affected
Red Hat Enterprise Linux 8gitNot affected
Red Hat Software Collectionsrh-git218-gitNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Дефект:
CWE-20
https://bugzilla.redhat.com/show_bug.cgi?id=1781968git: Git does not refuse to write out tracked files with backlashes in filenames

EPSS

Процентиль: 95%
0.19352
Средний

0 Low

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2019-1354

CVSS3: 8.8
ubuntu
больше 5 лет назад

A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1350, CVE-2019-1352, CVE-2019-1387.

nvd логотип

CVE-2019-1354

CVSS3: 8.8
nvd
больше 5 лет назад

A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1350, CVE-2019-1352, CVE-2019-1387.

msrc логотип

CVE-2019-1354

msrc
почти 6 лет назад

Git for Visual Studio Remote Code Execution Vulnerability

debian логотип

CVE-2019-1354

CVSS3: 8.8
debian
больше 5 лет назад

A remote code execution vulnerability exists when Git for Visual Studi ...

github логотип

GHSA-57mj-9r29-rj3q

github
больше 3 лет назад

A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1350, CVE-2019-1352, CVE-2019-1387.

EPSS

Процентиль: 95%
0.19352
Средний

0 Low

CVSS3

Уязвимость CVE-2019-1354