Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Atlassian
Atlassianadded 2017/05/08 5:5 a.m.62 views

Command Injection (CVE-2017-8768)

SourceTree for Windows is affected by a command injection vulnerability in URI handling. The vulnerability can be triggered through a browser or the SourceTree interface. Affected versions: Versions of SourceTree for Windows starting with 0.8.4b before version 2.0.20.1 are affected by this...

10CVSS3.1AI score0.08262EPSS
Exploits0Affected Software1
CVE
CVEadded 2017/05/04 10:0 p.m.131 views

CVE-2017-8768

CVE-2017-8768 affects Atlassian SourceTree v2.5c and earlier, with a command-injection flaw in the sourcetree:// URI handling that can trigger arbitrary OS commands when the URI contains substrings like sourcetree://cloneRepo/ext:: or sourcetree://checkoutRef/ext::. Multiple sources (SRCTREE-4738...

10CVSS9.7AI score0.08262EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2017/05/04 10:0 p.m.28 views

CVE-2017-8768

Atlassian SourceTree v2.5c and prior are affected by a command injection in the handling of the sourcetree:// scheme. It will lead to arbitrary OS command execution with a URL substring of sourcetree://cloneRepo/ext:: or sourcetree://checkoutRef/ext:: followed by the command. The Atlassian ID...

9.8AI score0.08262EPSS
Exploits0References4
Rows per page
Query Builder