Lucene search
HistoryMay 28, 2019 - 6:58 p.m.
Remote code execution vulnerability for Sourcetree for Windows - CVE-2019-11582
0.003 Low
EPSS
Percentile
69.4%
There was an argument injection vulnerability in SourceTree for Windows in URI handlers. A remote, unauthenticated attacker was required to convince a user to interact with a crafted URL in order to exploit the vulnerability. With user interaction, an attacker could gained remote code execution on the target system by exploiting this issue.
Versions of Sourcetree for Windows starting with 0.5a before 3.1.3 are affected by this vulnerability.
For additional details, see the full advisory:Ā [https://confluence.atlassian.com/display/SOURCETREEKB/Sourcetree+Security+Advisory+2019-06-05]
| CPE | Name | Operator | Version |
|---|---|---|---|
| sourcetree for windows | lt | 3.1.3 | |
| sourcetree for windows | le | 0.5a |
Related
cvelist
cvelist
CVE-2019-11582
2019-06-05 00:00:00
nvd
nvd
CVE-2019-11582
2019-06-14 14:29:00
cve
cve
CVE-2019-11582
2019-06-14 14:29:00
nessus
nessus
Atlassian SourceTree 0.5a < 3.1.3 Remote Code Execution vulnerability
2019-06-28 00:00:00
prion
prion
Design/Logic Flaw
2019-06-14 14:29:00
atlassian
atlassian