Lucene search
K

7 matches found

CVE
CVE
added 6 days ago14 views

CVE-2026-14439

CVE-2026-14439 describes a path-traversal in the Git Service shared by Altium Enterprise Server and Altium 365. The vulnerability arises from a post-clone file-manipulation primitive that accepts user-supplied paths without validation, enabling an authenticated user with basic git access to move ...

9.4CVSS6.5AI score0.00601EPSS
Exploits0References1
OSV
OSV
added 2026/04/22 12:0 a.m.6 views

UBUNTU-CVE-2026-33748

BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. Prior to version 0.28.1, insufficient validation of Git URL fragment subdir components may allow access to files outside the checked-out Git repository root. Possible access is...

8.2CVSS5.4AI score0.00463EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/03/30 11:27 p.m.7 views

SUSE CVE-2026-33748

BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. Prior to version 0.28.1, insufficient validation of Git URL fragment subdir components may allow access to files outside the checked-out Git repository root. Possible access is...

7.5CVSS5.8AI score0.00463EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 4:28 a.m.5 views

SUSE CVE-2018-10857

git-annex is vulnerable to a private data exposure and exfiltration attack. It could expose the content of files located outside the git-annex repository, or content from a private web server on localhost or the LAN...

7.5CVSS9.3AI score0.01539EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2019/04/22 3:29 p.m.46 views

CVE-2019-3902

A flaw was found in Mercurial before 4.9. It was possible to use symlinks and subrepositories to defeat Mercurial's path-checking logic and write files outside a repository...

5.9CVSS6AI score0.01413EPSS
Exploits0
CNVD
CNVD
added 2018/07/17 12:0 a.m.4 views

git-annex information disclosure vulnerability

git-annex is a distributed file synchronization system written in Haskell. A private data information disclosure vulnerability exists in git-annex. An attacker can exploit this vulnerability to obtain the contents of files outside of the git-annex repository and the contents of a private web serv...

7.5CVSS6.2AI score0.01539EPSS
Exploits0References1
OSV
OSV
added 2018/07/16 8:29 p.m.2 views

UBUNTU-CVE-2018-10857

git-annex is vulnerable to a private data exposure and exfiltration attack. It could expose the content of files located outside the git-annex repository, or content from a private web server on localhost or the LAN...

7.5CVSS6.9AI score0.01539EPSS
Exploits0References4
Rows per page
Query Builder