exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2008-4297

почти 17 лет назад

Mercurial before 1.0.2 does not enforce the allowpull permission setting for a pull operation from hgweb, which allows remote attackers to read arbitrary files from a repository via an "hg pull" request.

CVSS2: 5

EPSS: Низкий

CVE-2008-4297

около 17 лет назад

Mercurial before 1.0.2 does not enforce the allowpull permission setting for a pull operation from hgweb, which allows remote attackers to read arbitrary files from a repository via an "hg pull" request.

EPSS: Низкий

CVE-2008-4297

почти 17 лет назад

Mercurial before 1.0.2 does not enforce the allowpull permission setting for a pull operation from hgweb, which allows remote attackers to read arbitrary files from a repository via an "hg pull" request.

CVSS2: 5

EPSS: Низкий

CVE-2008-4297

почти 17 лет назад

Mercurial before 1.0.2 does not enforce the allowpull permission setti ...

CVSS2: 5

EPSS: Низкий

GHSA-rw83-rp96-92cm

больше 3 лет назад

Mercurial before 1.0.2 does not enforce the allowpull permission setting for a pull operation from hgweb, which allows remote attackers to read arbitrary files from a repository via an "hg pull" request.

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2008-4297 Mercurial before 1.0.2 does not enforce the allowpull permission setting for a pull operation from hgweb, which allows remote attackers to read arbitrary files from a repository via an "hg pull" request.	CVSS2: 5	1% Низкий	почти 17 лет назад
CVE-2008-4297 Mercurial before 1.0.2 does not enforce the allowpull permission setting for a pull operation from hgweb, which allows remote attackers to read arbitrary files from a repository via an "hg pull" request.		1% Низкий	около 17 лет назад
CVE-2008-4297 Mercurial before 1.0.2 does not enforce the allowpull permission setting for a pull operation from hgweb, which allows remote attackers to read arbitrary files from a repository via an "hg pull" request.	CVSS2: 5	1% Низкий	почти 17 лет назад
CVE-2008-4297 Mercurial before 1.0.2 does not enforce the allowpull permission setti ...	CVSS2: 5	1% Низкий	почти 17 лет назад
GHSA-rw83-rp96-92cm Mercurial before 1.0.2 does not enforce the allowpull permission setting for a pull operation from hgweb, which allows remote attackers to read arbitrary files from a repository via an "hg pull" request.		1% Низкий	больше 3 лет назад

Уязвимостей на страницу