Lucene search
K

20 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 3:1 p.m.4 views

CVE-2026-33353

Soft Serve is a self-hostable Git server for the command line. From version 0.6.0 to before version 0.11.6, an authorization flaw in repo import allows any authenticated SSH user to clone a server-local Git repository, including another user's private repo, into a new repository they control. Thi...

7.1CVSS5.7AI score0.00364EPSS
Exploits1References1
NVD
NVD
added 2026/03/24 8:16 p.m.3 views

CVE-2026-33353

Soft Serve is a self-hostable Git server for the command line. From version 0.6.0 to before version 0.11.6, an authorization flaw in repo import allows any authenticated SSH user to clone a server-local Git repository, including another user's private repo, into a new repository they control. Thi...

7.1CVSS0.00364EPSS
Exploits1References3
CVE
CVE
added 2026/03/24 7:39 p.m.15 views

CVE-2026-33353

CVE-2026-33353 affects Soft Serve: from v0.6.0 to before v0.11.6 an authorization flaw in repo import permits any authenticated SSH user to clone a server-local Git repository (even another user’s private repo) into a new repository under their control. The issue is mitigated by upgrading to v0.1...

7.1CVSS5.8AI score0.00364EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/03/24 7:39 p.m.22 views

CVE-2026-33353 Soft Serve: Authenticated repo import can clone server-local private repositories

Soft Serve is a self-hostable Git server for the command line. From version 0.6.0 to before version 0.11.6, an authorization flaw in repo import allows any authenticated SSH user to clone a server-local Git repository, including another user's private repo, into a new repository they control. Thi...

7.1CVSS0.00364EPSS
Exploits1References3
Snyk
Snyk
added 2026/03/23 6:16 p.m.4 views

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization via the repo import process. An attacker can access unauthorized server-local private repositories by initiating a clone operation after authenticating. Remediation Upgrade...

7.1CVSS5.9AI score0.00364EPSS
Exploits1References3
Snyk
Snyk
added 2026/03/23 6:16 p.m.5 views

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization via the repo import process. An attacker can access unauthorized server-local private repositories by initiating a clone operation after authenticating. Remediation Upgrade...

7.1CVSS5.9AI score0.00364EPSS
Exploits1References3
OSV
OSV
added 2026/03/19 7:27 p.m.7 views

GHSA-XGXP-F695-6VRP In Soft Serve, an authenticated repo import can clone server-local private repositories

Summary An authorization flaw in repo import allows any authenticated SSH user to clone a server-local Git repository, including another user's private repo, into a new repository they control. This breaks the private-repository confidentiality boundary and should be treated as High severity...

7.1CVSS5.9AI score0.00364EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/03/19 12:0 a.m.4 views

PT-2026-26490

Name of the Vulnerable Software and Affected Versions Soft Serve versions prior to 0.11.6 Description An authorization flaw exists in the repo import functionality, allowing any authenticated SSH user to clone server-local Git repositories, including private repositories belonging to other users,...

7.1CVSS5.9AI score0.00364EPSS
Exploits1References11
Vulnrichment
Vulnrichment
added 2026/03/07 3:57 p.m.3 views

CVE-2026-30832 Soft Serve: SSRF via unvalidated LFS endpoint in repo import

Soft Serve is a self-hostable Git server for the command line. From version 0.6.0 to before version 0.11.4, an authenticated SSH user can force the server to make HTTP requests to internal/private IP addresses by running repo import with a crafted --lfs-endpoint URL. The initial batch request is...

9.1CVSS5.7AI score0.00328EPSS
Exploits1References3
CVE
CVE
added 2026/03/07 3:57 p.m.32 views

CVE-2026-30832

CVE-2026-30832 — Soft Serve : A authenticated SSH user could force the server to perform HTTP requests to internal/private IPs by importing a crafted --lfs-endpoint URL, enabling access to internal targets. The initial batch request is blind and metadata endpoint parsing may not yield valid LFS J...

9.1CVSS5.7AI score0.00328EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/03/07 3:57 p.m.42 views

CVE-2026-30832 Soft Serve: SSRF via unvalidated LFS endpoint in repo import

Soft Serve is a self-hostable Git server for the command line. From version 0.6.0 to before version 0.11.4, an authenticated SSH user can force the server to make HTTP requests to internal/private IP addresses by running repo import with a crafted --lfs-endpoint URL. The initial batch request is...

9.1CVSS0.00328EPSS
Exploits1References3
OSV
OSV
added 2026/03/06 10:16 p.m.5 views

GHSA-3FVX-XRXQ-8JVV soft-serve vulnerable to SSRF via unvalidated LFS endpoint in repo import

While auditing the codebase in the wake of the webhook SSRF fix shipped in v0.11.1 GHSA-vwq2-jx9q-9h9f, it was identified that the LFS import path was never given the same treatment. The webhook fix introduced dual-layer SSRF protection — ValidateWebhookURL at creation time and secureHTTPClient...

9.1CVSS6AI score0.00328EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2026/03/06 10:16 p.m.9 views

soft-serve vulnerable to SSRF via unvalidated LFS endpoint in repo import

While auditing the codebase in the wake of the webhook SSRF fix shipped in v0.11.1 GHSA-vwq2-jx9q-9h9f, it was identified that the LFS import path was never given the same treatment. The webhook fix introduced dual-layer SSRF protection — ValidateWebhookURL at creation time and secureHTTPClient...

9.1CVSS6AI score0.00328EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-26227

Malware in sbrugna...

4.3CVSS4.5AI score0.00926EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-0231

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A resource misdirection vulnerability in GitLab CE/EE versions 12.0 prior to 17.0.5, 17.1 prior to 17.1.3, and 17.2 prior to 17.2.1 allows an attacker to craft ...

2.7CVSS5.5AI score0.00329EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 8:13 p.m.4 views

CVE-2021-39870

In all versions of GitLab CE/EE since version 11.11, an instance that has the setting to disable Repo by URL import enabled is bypassed by an attacker making a crafted API call...

4.3CVSS5.9AI score0.00926EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/07/24 12:0 a.m.7 views

GitLab CE/EE 安全漏洞

GitLab Enterprise Edition EE and GitLab Community Edition CE are both products of GitLab, Inc. GitLab Enterprise Edition is a content management system. GitLab Enterprise Edition is a content management system. A security vulnerability exists in GitLab CE/EE. An attacker has exploited the...

2.7CVSS6.4AI score0.00329EPSS
Exploits0References4
Hacker One
Hacker One
added 2024/05/10 10:48 a.m.4 views

GitLab: DOS: taking down a 1k users Gitlab EE instance or multiple Sidekiq instances by importing a malicious repo from a Github EE self-hosted server

The report described a vulnerability in GitLab where an attacker could cause a denial of service by importing a malicious payload via the GitHub importer functionality...

6.7AI score
Exploits0
Metasploit
Metasploit
added 2023/02/15 7:51 p.m.716 views

GitLab GitHub Repo Import Deserialization RCE

An authenticated user can import a repository from GitHub into GitLab. If a user attempts to import a repo from an attacker-controlled server, the server will reply with a Redis serialization protocol object in the nested defaultbranch. GitLab will cache this object and then deserialize it when...

9.9CVSS9AI score0.86194EPSS
Exploits5
Packet Storm
Packet Storm
added 2023/02/15 12:0 a.m.320 views

GitLab GitHub Repo Import Deserialization Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'GitLab GitHub Repo Import Deserialization RCE', 'Description' = %q An authenticated user can import a repository from GitHub into GitLab. If a us...

9.9CVSS9.6AI score0.86194EPSS
Exploits5
Rows per page
Query Builder