Lucene search
+L

4 matches found

NVD
NVD
added 2024/08/01 10:15 p.m.37 views

CVE-2024-41956

Soft Serve is a self-hostable Git server for the command line. Prior to 0.7.5, it is possible for a user who can commit files to a repository hosted by Soft Serve to execute arbitrary code via environment manipulation and Git. The issue is that Soft Serve passes all environment variables given by...

8.1CVSS0.00509EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/01 10:7 p.m.12 views

CVE-2024-41956 Soft Serve allows arbitrary code execution by crafting git-lfs requests

Soft Serve is a self-hostable Git server for the command line. Prior to 0.7.5, it is possible for a user who can commit files to a repository hosted by Soft Serve to execute arbitrary code via environment manipulation and Git. The issue is that Soft Serve passes all environment variables given by...

8.1CVSS7.6AI score0.00509EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/08/01 10:7 p.m.20 views

CVE-2024-41956 Soft Serve allows arbitrary code execution by crafting git-lfs requests

Soft Serve is a self-hostable Git server for the command line. Prior to 0.7.5, it is possible for a user who can commit files to a repository hosted by Soft Serve to execute arbitrary code via environment manipulation and Git. The issue is that Soft Serve passes all environment variables given by...

8.1CVSS0.00509EPSS
Exploits0References2
OSV
OSV
added 2024/08/01 10:7 p.m.19 views

CVE-2024-41956 Soft Serve allows arbitrary code execution by crafting git-lfs requests

Soft Serve is a self-hostable Git server for the command line. Prior to 0.7.5, it is possible for a user who can commit files to a repository hosted by Soft Serve to execute arbitrary code via environment manipulation and Git. The issue is that Soft Serve passes all environment variables given by...

8.1CVSS7.5AI score0.00509EPSS
Exploits0References4
Rows per page
Query Builder