Lucene search
+L

5 matches found

cbl_mariner
cbl_mariner
added 2025/08/07 9:14 p.m.7 views

CVE-2023-53158 affecting package rust for versions less than 1.72.0-8

CVE-2023-53158 affecting package rust for versions less than 1.72.0-8. A patched version of the package is available...

4.1CVSS6.4AI score0.00171EPSS
Exploits0
cve
cve
added 2025/07/28 12:0 a.m.19 views

CVE-2023-53158

CVE-2023-53158 affects the Rust crate gix-transport (before 0.36.1). The issue enables command execution via the substring gix clone 'ssh://-oProxyCommand=open$IFS', i.e., an SSH command injection. Impact details in sources indicate local attack vector with low confidentiality/integrity impact an...

4.1CVSS7.3AI score0.00171EPSS
Exploits0References4
ubuntucve
ubuntucve
added 2025/07/28 12:0 a.m.4 views

CVE-2023-53158

The gix-transport crate before 0.36.1 for Rust allows command execution via the "gix clone 'ssh://-oProxyCommand=open$IFS" substring. NOTE: this was discovered before CVE-2024-32884, a similar vulnerability involving a username field that is more difficult to exploit...

4.1CVSS6.1AI score0.00171EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2025/07/28 12:0 a.m.4 views

CVE-2023-53158

The gix-transport crate before 0.36.1 for Rust allows command execution via the "gix clone 'ssh://-oProxyCommand=open$IFS" substring. NOTE: this was discovered before CVE-2024-32884, a similar vulnerability involving a username field that is more difficult to exploit...

4.1CVSS6.4AI score0.00171EPSS
Exploits0References4
osv
osv
added 2025/07/28 12:0 a.m.7 views

CVE-2023-53158

The gix-transport crate before 0.36.1 for Rust allows command execution via the "gix clone 'ssh://-oProxyCommand=open$IFS" substring. NOTE: this was discovered before CVE-2024-32884, a similar vulnerability involving a username field that is more difficult to exploit...

4.1CVSS7.3AI score0.00171EPSS
Exploits0References6
Rows per page
Query Builder