Lucene search
K

11 matches found

Github Security Blog
Github Security Blog
added 2025/07/28 3:31 a.m.6 views

Duplicate Advisory: gix-transport code execution vulnerability

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-rrjw-j4m2-mf34. This link is maintained to preserve external references. Original Description The gix-transport crate before 0.36.1 for Rust allows command execution via the "gix clone...

6.4AI score
Exploits0References6Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 10:21 a.m.5 views

CVE-2024-32884

gitoxide is a pure Rust implementation of Git. gix-transport does not check the username part of a URL for text that the external ssh program would interpret as an option. A specially crafted clone URL can smuggle options to SSH. The possibilities are syntactically limited, but if a malicious clo...

6.4CVSS6.7AI score0.00514EPSS
Exploits0References1
Wolfi
Wolfi
added 2025/03/21 10:43 a.m.15 views

CVE-2024-32884 vulnerabilities

Vulnerabilities for packages: cargo-audit...

6.4CVSS7.1AI score0.00514EPSS
Exploits0
Chainguard
Chainguard
added 2025/03/21 10:12 a.m.29 views

CVE-2024-32884 vulnerabilities

Vulnerabilities for packages: cargo-audit...

6.4CVSS7.2AI score0.00514EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.6 views

Azure Linux 3.0 Security Update: rust (CVE-2024-32884)

The version of rust installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-32884 advisory. - gitoxide is a pure Rust implementation of Git. gix-transport does not check the username part of a URL for tex...

6.4CVSS6.8AI score0.00514EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/08/19 12:0 a.m.15 views

CBL Mariner 2.0 Security Update: rust (CVE-2024-32884)

The version of rust installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-32884 advisory. - gitoxide is a pure Rust implementation of Git. gix-transport does not check the username part of a URL for tex...

6.4CVSS6.8AI score0.00514EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/08/18 2:44 p.m.37 views

CVE-2024-32884 affecting package rust for versions less than 1.72.0-8

CVE-2024-32884 affecting package rust for versions less than 1.72.0-8. A patched version of the package is available...

6.4CVSS7AI score0.00514EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/08/14 8:43 p.m.9 views

CVE-2024-32884 affecting package rust for versions less than 1.75.0-9

CVE-2024-32884 affecting package rust for versions less than 1.75.0-9. A patched version of the package is available...

6.4CVSS6.9AI score0.00514EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/08/14 8:43 p.m.47 views

CVE-2024-32884 affecting package rust for versions less than 1.75.0-9

CVE-2024-32884 affecting package rust for versions less than 1.75.0-9. A patched version of the package is available...

6.4CVSS7AI score0.00514EPSS
Exploits0
OSV
OSV
added 2024/04/26 6:15 p.m.6 views

AZL-40264 CVE-2024-32884 affecting package rust for versions less than 1.72.0-8

gitoxide is a pure Rust implementation of Git. gix-transport does not check the username part of a URL for text that the external ssh program would interpret as an option. A specially crafted clone URL can smuggle options to SSH. The possibilities are syntactically limited, but if a malicious clo...

6.4CVSS7.1AI score0.00514EPSS
Exploits0References1
Circl
Circl
added 2024/04/13 1:4 p.m.5 views

CVE-2024-32884

creationtimestamp| type| source ---|---|--- 2024-04-13 13:04:03+00:00| published-proof-of-concept| https://github.com/GitoxideLabs/gitoxide/security/advisories/GHSA-98p4-xjmm-8mfh...

6.4CVSS6.6AI score0.00514EPSS
Exploits0References1
Rows per page
Query Builder