Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-1408

Malicious code in bioql PyPI...

5.4CVSS6.3AI score0.00448EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/23 9:4 a.m.4 views

CVE-2024-35197

gitoxide is a pure Rust implementation of Git. On Windows, fetching refs that clash with legacy device names reads from the devices, and checking out paths that clash with such names writes arbitrary data to the devices. This allows a repository, when cloned, to cause indefinite blocking or the...

5.4CVSS6.8AI score0.00448EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/23 12:9 p.m.38 views

CVE-2024-35197 gix refs and paths with reserved Windows device names access the devices

gitoxide is a pure Rust implementation of Git. On Windows, fetching refs that clash with legacy device names reads from the devices, and checking out paths that clash with such names writes arbitrary data to the devices. This allows a repository, when cloned, to cause indefinite blocking or the...

5.4CVSS5.5AI score0.00448EPSS
Exploits0References1
RustSec
RustSec
added 2024/05/22 12:0 p.m.6 views

Refs and paths with reserved Windows device names access the devices

Summary On Windows, fetching refs that clash with legacy device names reads from the devices, and checking out paths that clash with such names writes arbitrary data to the devices. This allows a repository, when cloned, to cause indefinite blocking or the production of arbitrary message that...

5.4CVSS7.1AI score0.00448EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/05/22 12:0 p.m.17 views

RUSTSEC-2024-0351 Refs and paths with reserved Windows device names access the devices

Summary On Windows, fetching refs that clash with legacy device names reads from the devices, and checking out paths that clash with such names writes arbitrary data to the devices. This allows a repository, when cloned, to cause indefinite blocking or the production of arbitrary message that...

5.4CVSS5.5AI score0.00448EPSS
Exploits0References5
OSV
OSV
added 2024/05/22 12:0 p.m.13 views

RUSTSEC-2024-0352 Refs and paths with reserved Windows device names access the devices

Summary On Windows, fetching refs that clash with legacy device names reads from the devices, and checking out paths that clash with such names writes arbitrary data to the devices. This allows a repository, when cloned, to cause indefinite blocking or the production of arbitrary message that...

5.4CVSS5.5AI score0.00448EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/05/22 12:0 a.m.4 views

PT-2024-4191 · Gitoxide · Gitoxide

Name of the Vulnerable Software and Affected Versions: gitoxide affected versions not specified Description: The issue is related to how gitoxide handles legacy device names on Windows. When fetching refs or checking out paths that clash with these names, it can read from or write to devices,...

6.4CVSS6.7AI score0.00448EPSS
Exploits0References16
Rows per page
Query Builder