Lucene search

HistoryDec 21, 2017 - 6:29 a.m.

CVE-2017-17831

2017-12-2106:29:00

CWE-20

web.nvd.nist.gov

github

git lfs

security vulnerability

remote execution

arbitrary commands

nvd

cve-2017-17831

8.5 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.2%

CPE configuration

NVD

git_large_file_storage_projectgit_large_file_storageRange<2.1.1

CPENameOperatorVersion
git_large_file_storage_project:git_large_file_storagegit large file storage project git large file storagelt2.1.1

CPE	Name	Operator	Version
git_large_file_storage_project:git_large_file_storage	git large file storage project git large file storage	lt	2.1.1

blog.recurity-labs.com/2017-08-10/scm-vulns

www.securityfocus.com/bid/102926

confluence.atlassian.com/sourcetreekb/sourcetree-security-advisory-2018-01-24-942834324.html

github.com/git-lfs/git-lfs/pull/2242

github.com/git-lfs/git-lfs/releases/tag/v2.1.1