Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2018/09/11 12:0 a.m.49 views

Atlassian SourceTree 0.5.1.0 < 2.6.9 Remote Code Execution Vulnerabilities

The version of Atlassian SourceTree installed on the remote host is a version 0.5.1.0 prior to 2.6.9 . It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. C Tenable...

9.8CVSS7.5AI score0.49188EPSS
Exploits10References4
0day.today
0day.today
added 2018/07/25 12:0 a.m.167 views

Sourcetree Remote Code Execution Exploit

Sourcetree suffers from multiple remote code execution vulnerabilities related to git submodules and argument injection. macOS versions 1.0b2 up to 2.7.6 and Windows versions 0.5.1.0 up to 2.6.10 are affected. Sourcetree Remote Code Execution Exploit CVE ID: CVE-2018-11235. CVE-2018-13385...

6.8CVSS0.5AI score0.49188EPSS
Exploits10
NVD
NVD
added 2018/07/24 1:29 p.m.16 views

CVE-2018-13385

There was an argument injection vulnerability in Sourcetree for macOS via filenames in Mercurial repositories. An attacker with permission to commit to a Mercurial repository linked in Sourcetree for macOS is able to exploit this issue to gain code execution on the system. Versions of Sourcetree...

9.8CVSS9.6AI score0.02214EPSS
Exploits1References1
CVE
CVE
added 2018/07/24 1:0 p.m.194 views

CVE-2018-13385

Sourcetree for macOS is affected in versions 1.0b2 through before 2.7.6 by an argument injection vulnerability via filenames in Mercurial repositories. An attacker who can commit to a linked Mercurial repo can exploit this to gain code execution on the host. Root cause: unsafe handling of reposit...

9.8CVSS9.6AI score0.02214EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/07/24 1:0 p.m.17 views

CVE-2018-13385

There was an argument injection vulnerability in Sourcetree for macOS via filenames in Mercurial repositories. An attacker with permission to commit to a Mercurial repository linked in Sourcetree for macOS is able to exploit this issue to gain code execution on the system. Versions of Sourcetree...

9.7AI score0.02214EPSS
Exploits1References1
Rows per page
Query Builder