Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2019/03/14 12:0 a.m.67 views

Atlassian SourceTree 0.5a < 3.0.17 Multiple remote code execution vulnerabilities

The version of Atlassian SourceTree installed on the remote Windows host is version 0.5a prior to 3.0.17. It is, therefore, affected by multiple remote code execution vulnerabilities. - An option injection vulnerability exists in the git submodule component. An unauthenticated, remote attacker ca...

9.8CVSS8.3AI score0.97356EPSS
Exploits12References5
OSV
OSV
added 2019/03/08 6:29 p.m.4 views

CVE-2018-20236

There was an command injection vulnerability in Sourcetree for Windows from version 0.5a before version 3.0.10 via URI handling. A remote attacker could send a malicious URI to a victim using Sourcetree for Windows to exploit this issue to gain code execution on the system...

8.8CVSS6.2AI score0.0644EPSS
Exploits0References4
NVD
NVD
added 2019/03/08 6:29 p.m.17 views

CVE-2018-20236

There was an command injection vulnerability in Sourcetree for Windows from version 0.5a before version 3.0.10 via URI handling. A remote attacker could send a malicious URI to a victim using Sourcetree for Windows to exploit this issue to gain code execution on the system...

9.3CVSS9.5AI score0.0644EPSS
Exploits0References4
CVE
CVE
added 2019/03/08 6:0 p.m.81 views

CVE-2018-20236

CVE-2018-20236 affects Sourcetree for Windows: a URI-handling vulnerability in versions older than 3.0.10 allows unauthenticated remote attackers to supply a malicious URI that yields code execution on the victim’s system. Affected: Sourcetree for Windows before 3.0.10 (0.5a–3.0.9). Remediation: ...

9.3CVSS9.1AI score0.0644EPSS
Exploits0References4Affected Software1
Atlassian
Atlassian
added 2019/01/23 10:17 p.m.37 views

Command Injection via URI handling in Sourcetree for Windows - CVE-2018-20236

There was an command injection vulnerability in Sourcetree for Windows via URI handling. A remote attacker could send a malicious URI to a victim using Sourcetree for Windows to exploit this issue to gain code execution on the system. h4. Affected versions: Versions of Sourcetree for Windows befo...

9.3CVSS4.6AI score0.0644EPSS
Exploits0
Rows per page
Query Builder