Lucene search
+L

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2022-25648

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The package git before 1.11.0 are vulnerable to Command Injection via git argument injection. When calling the fetchremote = 'origin', opts = function, the remo...

9.8CVSS7.1AI score0.04871EPSS
Exploits1References2
Debian
Debian
added 2023/01/30 10:33 p.m.28 views

[SECURITY] [DLA 3303-1] ruby-git security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-3303-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta January 31, 2023 https://wiki.debian.org/LTS -...

9.8CVSS9.9AI score0.04871EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2022/11/16 3:9 p.m.424 views

Important: Red Hat Security Advisory: Satellite 6.12 Release

An update is now available for Red Hat Satellite 6.12. The release contains a new version of Satellite and important security fixes for various components. Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring ...

9.8CVSS7AI score0.73274EPSS
Exploits7References279
OSV
OSV
added 2022/11/16 1:21 p.m.38 views

RLSA-2022:8506 Important: Satellite 6.12 Release

Rocky Enterprise Software Foundation Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Security Fixes: netty-codec: Bzip2Decoder doesn't allow setting...

9.8CVSS8.7AI score0.73274EPSS
Exploits6References279
Mageia
Mageia
added 2022/07/05 7:11 p.m.51 views

Updated ruby-git packages fix security vulnerability

Command Injection via git argument injection CVE-2022-25648...

9.8CVSS4.4AI score0.04871EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2022/04/20 5:0 a.m.58 views

CVE-2022-25648

A flaw was found in ruby-git, where the package is vulnerable to command injection via the git argument. This flaw allows an attacker to set additional flags, which leads to performing command injections...

9.8CVSS4.1AI score0.04871EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2022/04/19 5:15 p.m.36 views

CVE-2022-25648

The package git before 1.11.0 are vulnerable to Command Injection via git argument injection. When calling the fetchremote = 'origin', opts = function, the remote parameter is passed to the git fetch subcommand in a way that additional flags can be set. The additional flags can be used to perform...

9.8CVSS7.2AI score0.04871EPSS
Exploits1References4
Cvelist
Cvelist
added 2022/04/19 4:35 p.m.48 views

CVE-2022-25648 Command Injection

The package git before 1.11.0 are vulnerable to Command Injection via git argument injection. When calling the fetchremote = 'origin', opts = function, the remote parameter is passed to the git fetch subcommand in a way that additional flags can be set. The additional flags can be used to perform...

8.1CVSS10AI score0.04871EPSS
Exploits1References7
CVE
CVE
added 2022/04/19 4:35 p.m.159 views

CVE-2022-25648

CVE-2022-25648 affects the Ruby library ruby-git (Ruby interface to Git). The vulnerability arises from the fetch(remote = 'origin', opts = {}) pathway, where the remote argument is passed to the underlying git fetch command and can be manipulated to inject commands. Several connected advisories ...

9.8CVSS9.2AI score0.04871EPSS
Exploits1References7Affected Software1
Debian CVE
Debian CVE
added 2022/04/19 4:35 p.m.52 views

CVE-2022-25648

The package git before 1.11.0 are vulnerable to Command Injection via git argument injection. When calling the fetchremote = 'origin', opts = function, the remote parameter is passed to the git fetch subcommand in a way that additional flags can be set. The additional flags can be used to perform...

9.8CVSS9.9AI score0.04871EPSS
Exploits1
Rows per page
Query Builder