CVE-2024-39930

🗓️ 04 Jul 2024 16:02:15Reported by mitreType

Gogs SSH server allows argument injection leading to remote code executio

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 12
NVD	CVE-2024-39930	4 Jul 202416:15	–	nvd
Vulnrichment	CVE-2024-39930	4 Jul 202400:00	–	vulnrichment
Github Security Blog	Duplicate Advisory: github.com/gogs/gogs affected by CVE-2024-39930	4 Jul 202418:31	–	github
Github Security Blog	Gogs has an argument Injection in the built-in SSH server	23 Dec 202420:38	–	github
Veracode	Remote Code Execution (RCE)	5 Jul 202406:39	–	veracode
Cvelist	CVE-2024-39930	4 Jul 202400:00	–	cvelist
OSV	github.com/gogs/gogs affected by CVE-2024-39930	4 Jul 202418:31	–	osv
OSV	CVE-2024-39930	4 Jul 202416:15	–	osv
OSV	GHSA-VM62-9JW3-C8W3 Gogs has an argument Injection in the built-in SSH server	23 Dec 202420:38	–	osv
OSV	GO-2024-2969 github.com/gogs/gogs affected by CVE-2024-39930	9 Jul 202419:34	–	osv

Nvd

Node

gogs gogsRange≤0.13.0

Source	Link
vicarius	www.vicarius.io/vsociety/posts/argument-injection-in-gogs-ssh-server-cve-2024-39930
sonarsource	www.sonarsource.com/blog/securing-developer-tools-unpatched-code-vulnerabilities-in-gogs-1/
github	www.github.com/gogs/gogs/releases

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo