Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2022/05/21 12:4 a.m.19 views

CVE-2018-20683

commands/rsync in Gitolite before 3.6.11, if .gitolite.rc enables rsync, mishandles the rsync command line, which allows attackers to have a "bad" impact by triggering use of an option other than -v, -n, -q, or -P...

8.1CVSS5.2AI score0.02009EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.14 views

Mageia: Security Advisory (MGASA-2019-0058)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.2AI score0.02009EPSS
Exploits0References4
OSV
OSV
added 2019/03/23 9:56 a.m.7 views

OPENSUSE-SU-2019:0054-1 Security update for gitolite

This update for gitolite fixes the following security issue: - CVE-2018-20683: The rsync command line was not handled correctly, allow malicious rsync options boo1121570 The version update to 3.6.11 also contains a number of upstream bug fixes...

8.1CVSS8.1AI score0.02009EPSS
Exploits0References3
OSV
OSV
added 2019/01/31 10:55 p.m.8 views

MGASA-2019-0058 Updated gitolite packages fixes security vulnerability

In commands/rsync in Gitolite before 3.6.11, if .gitolite.rc enables rsync, mishandles the rsync command line, which allows attackers to have a "bad" impact by triggering use of an option other than -v, -n, -q, or -P CVE-2018-20683...

8.1CVSS8.1AI score0.02009EPSS
Exploits0References3
Mageia
Mageia
added 2019/01/31 10:55 p.m.36 views

Updated gitolite packages fixes security vulnerability

In commands/rsync in Gitolite before 3.6.11, if .gitolite.rc enables rsync, mishandles the rsync command line, which allows attackers to have a "bad" impact by triggering use of an option other than -v, -n, -q, or -P CVE-2018-20683...

8.1CVSS5.3AI score0.02009EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/01/22 12:0 a.m.58 views

openSUSE Security Update : gitolite (openSUSE-2019-54)

This update for gitolite fixes the following security issue : - CVE-2018-20683: The rsync command line was not handled correctly, allow malicious rsync options boo1121570 The version update to 3.6.11 also contains a number of upstream bug fixes. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

8.1CVSS7.6AI score0.02009EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2019/01/18 12:0 a.m.19 views

openSUSE: Security Advisory for gitolite (openSUSE-SU-2019:0054-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS8.1AI score0.02009EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2019/01/10 1:29 a.m.19 views

CVE-2018-20683

commands/rsync in Gitolite before 3.6.11, if .gitolite.rc enables rsync, mishandles the rsync command line, which allows attackers to have a "bad" impact by triggering use of an option other than -v, -n, -q, or -P...

8.1CVSS7.2AI score0.02009EPSS
Exploits0References5
CVE
CVE
added 2019/01/10 1:0 a.m.145 views

CVE-2018-20683

Gitolite before 3.6.11 has a vulnerability in commands/rsync where enabling rsync via .gitolite.rc mishandles the rsync command line, allowing an attacker to trigger an option other than -v, -n, -q, or -P. Affected product is Gitolite; root cause is improper handling of rsync options when rsync i...

8.1CVSS7.9AI score0.02009EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder