Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-28086

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pass through 1.7.3 has a possibility of using a password for an unintended resource. For exploitation to occur, the user must do a git pull, decrypt a password,...

7.5CVSS7.2AI score0.00586EPSS
Exploits0References3
OSV
OSV
added 2020/12/09 7:15 p.m.3 views

DEBIAN-CVE-2020-28086

pass through 1.7.3 has a possibility of using a password for an unintended resource. For exploitation to occur, the user must do a git pull, decrypt a password, and log into a remote service with the password. If an attacker controls the central Git server or one of the other members' machines, a...

7.5CVSS7.4AI score0.00586EPSS
Exploits0References1
OSV
OSV
added 2020/12/09 7:15 p.m.8 views

CVE-2020-28086

pass through 1.7.3 has a possibility of using a password for an unintended resource. For exploitation to occur, the user must do a git pull, decrypt a password, and log into a remote service with the password. If an attacker controls the central Git server or one of the other members' machines, a...

7.5CVSS6.9AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/12/09 7:15 p.m.30 views

CVE-2020-28086

pass through 1.7.3 has a possibility of using a password for an unintended resource. For exploitation to occur, the user must do a git pull, decrypt a password, and log into a remote service with the password. If an attacker controls the central Git server or one of the other members' machines, a...

7.5CVSS7.1AI score0.00586EPSS
Exploits0References2
CVE
CVE
added 2020/12/09 6:9 p.m.62 views

CVE-2020-28086

The CVE-2020-28086 issue affects pass through 1.7.3, where a mismatch allows decrypting the wrong password from a Git-managed password store. Exploitation requires the attacker to control the central Git server (or other members’ machines) and at least one service in the password store, then rena...

7.5CVSS7.7AI score0.00586EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/12/09 6:9 p.m.34 views

CVE-2020-28086

pass through 1.7.3 has a possibility of using a password for an unintended resource. For exploitation to occur, the user must do a git pull, decrypt a password, and log into a remote service with the password. If an attacker controls the central Git server or one of the other members' machines, a...

7.7AI score0.00586EPSS
Exploits0References1
Rows per page
Query Builder