Lucene search
K

58 matches found

ATTACKERKB
ATTACKERKB
added 2022/10/19 12:15 p.m.8 views

CVE-2022-39260

Git is an open source, scalable, distributed revision control system. git shell is a restricted login shell that can be used to implement Git's push/pull functionality via SSH. In versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4, the function that splits the...

8.8CVSS8AI score0.02938EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2022/10/19 12:0 a.m.30 views

CVE-2022-39260 Git vulnerable to Remote Code Execution via Heap overflow in `git shell`

Git is an open source, scalable, distributed revision control system. git shell is a restricted login shell that can be used to implement Git's push/pull functionality via SSH. In versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4, the function that splits the...

8.5CVSS9.5AI score0.02938EPSS
Exploits0References8
CVE
CVE
added 2022/10/19 12:0 a.m.597 views

CVE-2022-39260

Git Shell command-argument parsing bug (CVE-2022-39260) in pre-2.30.6…2.37.4 allows an attacker with SSH access to a Git shell login to overflow an int-based count when building the argv array, enabling arbitrary heap writes and potential remote code execution via execv(). Affected setups require...

8.8CVSS9.2AI score0.02938EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2022/10/19 12:0 a.m.64 views

CVE-2022-39260

Git is an open source, scalable, distributed revision control system. git shell is a restricted login shell that can be used to implement Git's push/pull functionality via SSH. In versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4, the function that splits the...

8.8CVSS9.4AI score0.02938EPSS
Exploits0
OSV
OSV
added 2022/10/19 12:0 a.m.41 views

CVE-2022-39260 Git vulnerable to Remote Code Execution via Heap overflow in `git shell`

Git is an open source, scalable, distributed revision control system. git shell is a restricted login shell that can be used to implement Git's push/pull functionality via SSH. In versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4, the function that splits the...

8.5CVSS9AI score0.02938EPSS
Exploits0References10
AlpineLinux
AlpineLinux
added 2022/10/19 12:0 a.m.31 views

CVE-2022-39260

Git is an open source, scalable, distributed revision control system. git shell is a restricted login shell that can be used to implement Git's push/pull functionality via SSH. In versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4, the function that splits the...

8.8CVSS9.4AI score0.02938EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/02/16 12:0 a.m.18 views

Fedora: Security Advisory for zsh (FEDORA-2022-adf0c6d196)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.8AI score0.0198EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/03/13 12:0 a.m.27 views

Fedora: Security Advisory for zsh (FEDORA-2020-9009363f0f)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.9AI score0.00495EPSS
Exploits0References2
Fedora
Fedora
added 2020/03/12 9:57 p.m.47 views

[SECURITY] Fedora 31 Update: zsh-5.7.1-6.fc31

The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell the Korn shell, but includes many enhancements. Zsh supports command line editing, built-in spelling correction, programmable command completion, shell...

7.8CVSS0.8AI score0.00495EPSS
Exploits0
0day.today
0day.today
added 2019/10/15 12:0 a.m.101 views

Ajenti 2.1.31 - Remote Code Execution Exploit

Exploit for python platform in category web applications Title: Ajenti 2.1.31 - Remote Code Execution Author: Jeremy Brown Software Link: https://github.com/ajenti/ajenti CVE: N/A Tested on: Ubuntu Linux !/usr/bin/python ajentix.py Ajenti Remote Command Execution Exploit ------- Details -------...

7.4AI score
Exploits0
Fedora
Fedora
added 2018/09/14 9:54 p.m.48 views

[SECURITY] Fedora 27 Update: zsh-5.4.1-4.fc27

The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell the Korn shell, but includes many enhancements. Zsh supports command line editing, built-in spelling correction, programmable command completion, shell...

9.8CVSS0.8AI score0.02723EPSS
Exploits0
Fedora
Fedora
added 2018/09/11 5:3 p.m.39 views

[SECURITY] Fedora 28 Update: zsh-5.5.1-2.fc28

The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell the Korn shell, but includes many enhancements. Zsh supports command line editing, built-in spelling correction, programmable command completion, shell...

9.8CVSS0.8AI score0.02723EPSS
Exploits0
Fedora
Fedora
added 2018/05/05 10:28 p.m.45 views

[SECURITY] Fedora 27 Update: zsh-5.4.1-3.fc27

The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell the Korn shell, but includes many enhancements. Zsh supports command line editing, built-in spelling correction, programmable command completion, shell...

7.8CVSS0.8AI score0.02641EPSS
Exploits0
Fedora
Fedora
added 2018/04/17 12:24 a.m.33 views

[SECURITY] Fedora 28 Update: zsh-5.5-1.fc28

The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell the Korn shell, but includes many enhancements. Zsh supports command line editing, built-in spelling correction, programmable command completion, shell...

7.8CVSS0.8AI score0.00628EPSS
Exploits0
Fedora
Fedora
added 2018/03/20 5:37 p.m.36 views

[SECURITY] Fedora 26 Update: zsh-5.3.1-7.fc26

The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell the Korn shell, but includes many enhancements. Zsh supports command line editing, built-in spelling correction, programmable command completion, shell...

9.8CVSS0.8AI score0.03173EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/05/11 12:0 a.m.38 views

Debian DLA-938-1 : git security update

Timo Schmid of ERNW GmbH discovered that the Git git-shell, a restricted login shell for Git-only SSH access, allows a user to run an interactive pager by causing it to spawn 'git upload-pack --help'. For Debian 7 'Wheezy', these problems have been fixed in version 1:1.7.10.4-1+wheezy4. We...

8.8CVSS7.2AI score0.12387EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2017/05/11 12:0 a.m.58 views

Debian DSA-3848-1 : git - security update

Timo Schmid of ERNW GmbH discovered that the Git git-shell, a restricted login shell for Git-only SSH access, allows a user to run an interactive pager by causing it to spawn 'git upload-pack --help'. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...

8.8CVSS7.1AI score0.12387EPSS
Exploits2References3
Debian
Debian
added 2017/05/10 7:56 p.m.26 views

[SECURITY] [DLA 938-1] git security update

Package : git Version : 1:1.7.10.4-1+wheezy4 CVE ID : CVE-2017-8386 Timo Schmid of ERNW GmbH discovered that the Git git-shell, a restricted login shell for Git-only SSH access, allows a user to run an interactive pager by causing it to spawn "git upload-pack --help". For Debian 7 "Wheezy", these...

8.8CVSS9.1AI score0.12387EPSS
Exploits2
OpenVAS
OpenVAS
added 2017/05/10 12:0 a.m.39 views

Debian Security Advisory DSA 3848-1 (git - security update)

Timo Schmid of ERNW GmbH discovered that the Git git-shell, a restricted login shell for Git-only SSH access, allows a user to run an interactive pager by causing it to spawn OpenVAS Vulnerability Test $Id: deb3848.nasl 6607 2017-07-07 12:04:25Z cfischer $ Auto-generated from advisory DSA 3848-1...

6.5CVSS8.7AI score0.12387EPSS
Exploits2References1
BDU FSTEC
BDU FSTEC
added 2015/06/01 12:0 a.m.5 views

The vulnerability of the Red Hat Enterprise Linux operating system allows a remote attacker to compromise the confidentiality and accessibility of protected information.

The vulnerability of the libvirt-login-shell-1.1.1 package on the Red Hat Enterprise Linux operating system can lead to a violation of the confidentiality and accessibility of protected information. This vulnerability can be exploited remotely...

5.8CVSS6.7AI score0.01905EPSS
Exploits0References2
Rows per page
Query Builder