Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2019-1387

Опубликовано: 18 дек. 2019
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 6.8
CVSS3: 8.8

Описание

An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6. Recursive clones are currently affected by a vulnerability that is caused by too-lax validation of submodule names, allowing very targeted attacks via remote code execution in recursive clones.

РелизСтатусПримечание
bionic

released

1:2.17.1-1ubuntu0.5
devel

released

1:2.25.0-1ubuntu1
disco

released

1:2.20.1-2ubuntu1.19.04.1
eoan

released

1:2.20.1-2ubuntu1.19.10.1
esm-infra-legacy/trusty

DNE

esm-infra/bionic

released

1:2.17.1-1ubuntu0.5
esm-infra/xenial

released

1:2.7.4-0ubuntu1.7
precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 87%
0.03431
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2019-1387

CVSS3: 7.5
redhat
почти 6 лет назад

An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6. Recursive clones are currently affected by a vulnerability that is caused by too-lax validation of submodule names, allowing very targeted attacks via remote code execution in recursive clones.

nvd логотип

CVE-2019-1387

CVSS3: 8.8
nvd
больше 5 лет назад

An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6. Recursive clones are currently affected by a vulnerability that is caused by too-lax validation of submodule names, allowing very targeted attacks via remote code execution in recursive clones.

msrc логотип

CVE-2019-1387

msrc
почти 6 лет назад

Git for Visual Studio Remote Code Execution Vulnerability

debian логотип

CVE-2019-1387

CVSS3: 8.8
debian
больше 5 лет назад

An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v ...

github логотип

GHSA-9mhc-h3vf-83fw

CVSS3: 8.8
github
больше 3 лет назад

An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6. Recursive clones are currently affected by a vulnerability that is caused by too-lax validation of submodule names, allowing very targeted attacks via remote code execution in recursive clones.

EPSS

Процентиль: 87%
0.03431
Низкий

6.8 Medium

CVSS2

8.8 High

CVSS3