CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3098 matches found

Prion•added 2022/10/19 11:15 a.m.•24 views

Design/Logic Flaw

Git is an open source, scalable, distributed revision control system. Versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4 are subject to exposure of sensitive information to a malicious actor. When performing a local clone where the source and target of the clone...

1.9CVSS6.4AI score0.02579EPSS

Exploits1References11Affected Software4

ATTACKERKB•added 2022/10/19 11:15 a.m.•3 views

CVE-2022-39253

5.5CVSS6.1AI score0.02579EPSS

Exploits1References18Affected Software1

CVE•added 2022/10/19 12:0 a.m.•643 views

CVE-2022-39253

Summary (facts grounded to provided docs): CVE-2022-39253 affects Git versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4, exposing sensitive data via local clones where source and target are on the same volume. The vulnerability arises when cloning a repository l...

5.5CVSS6.5AI score0.02579EPSS

Exploits1References12Affected Software1

AlpineLinux•added 2022/10/19 12:0 a.m.•65 views

CVE-2022-39253

5.5CVSS6.7AI score0.02579EPSS

Exploits1

Debian CVE•added 2022/10/19 12:0 a.m.•47 views

CVE-2022-39253

5.5CVSS5.8AI score0.02579EPSS

Exploits1

Cvelist•added 2022/10/19 12:0 a.m.•24 views

CVE-2022-39253 Git subject to exposure of sensitive information via local clone of symbolic links

5.5CVSS6.4AI score0.02579EPSS

Exploits1References12

OSV•added 2022/10/18 5:0 p.m.•1 views

UBUNTU-CVE-2022-39253

5.5CVSS6.6AI score0.02579EPSS

Exploits1References5

UbuntuCve•added 2022/10/18 5:0 p.m.•40 views

CVE-2022-39253

5.5CVSS6.6AI score0.02579EPSS

Exploits1References4

Positive Technologies•added 2022/10/18 12:0 a.m.•2 views

PT-2022-7022 · Git +9 · Git +9

Name of the Vulnerable Software and Affected Versions: Git versions prior to 2.30.6 Git versions prior to 2.31.5 Git versions prior to 2.32.4 Git versions prior to 2.33.5 Git versions prior to 2.34.5 Git versions prior to 2.35.5 Git versions prior to 2.36.3 Git versions prior to 2.37.4 Descriptio...

9.9CVSS6.1AI score0.61881EPSS

Exploits15References198

OSV•added 2022/10/17 4:15 p.m.•0 views

UBUNTU-CVE-2022-3283

A potential DOS vulnerability was discovered in GitLab CE/EE affecting all versions before before 15.2.5, all versions starting from 15.3 before 15.3.4, all versions starting from 15.4 before 15.4.1 While cloning an issue with special crafted content added to the description could have been used ...

7.5CVSS7.1AI score0.00441EPSS

Exploits1References2

Veracode•added 2022/09/30 7:47 a.m.•18 views

Prototype Pollution

@hapi/hoek is vulnerable to prototype pollution. The function internals.clone allows an attacker to get control of value of “path” and modify attributes such as proto, constructor and prototype...

8.1CVSS7.9AI score0.01047EPSS

Exploits0References2Affected Software1

Hive Pro Threat Advisories•added 2022/09/26 6:35 a.m.•52 views

Zero-Day vulnerability in WPGateway Plugin compromises WordPress sites

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary The recently uncovered CVE-2022-3180 zero-day vulnerability allows an unauthenticated attacker to add an administrator account to WPGateway-powered websites. WPGateway is a commercial plugin that...

3.7AI score0.23516EPSS

Exploits2

OSV•added 2022/09/25 12:0 a.m.•1 views

GHSA-C429-5P7V-VGJP hoek subject to prototype pollution via the clone function.

hoek versions prior to 8.5.1, and 9.x prior to 9.0.3 are vulnerable to prototype pollution in the clone function. If an object with the proto key is passed to clone the key is converted to a prototype. This issue has been patched in version 9.0.3, and backported to 8.5.1...

8.1CVSS6.9AI score0.01047EPSS

Exploits0References4