Sourcetree Security Vulnerabilities and Issues — Sourcetree CVE List

Lucene search

AtlassianSourcetree

3 matches found

CVE•added 2018/07/24 1:29 p.m.•134 views

CVE-2018-13386

There was an argument injection vulnerability in Sourcetree for Windows via filenames in Mercurial repositories. An attacker with permission to commit to a Mercurial repository linked in Sourcetree for Windows is able to exploit this issue to gain code execution on the system. Versions of Sourcetre...

8.1CVSS9.3AI score0.00457EPSS

CVE•added 2018/04/25 9:29 p.m.•114 views

CVE-2018-5226

There was an argument injection vulnerability in Sourcetree for Windows via Mercurial repository tag name that is going to be deleted. An attacker with permission to create a tag on a Mercurial repository linked in Sourcetree for Windows is able to exploit this issue to gain code execution on the s...

8.8CVSS8.9AI score0.00556EPSS

CVE•added 2024/11/19 7:15 p.m.•69 views

CVE-2024-21697

This High severity RCE (Remote Code Execution) vulnerability was introduced in versions 4.2.8 of Sourcetree for Mac and 3.4.19 for Sourcetree for Windows. This RCE (Remote Code Execution) vulnerability, with a CVSS Score of 8.8, allows an unauthenticated attacker to execute arbitrary code which has...

8.8CVSS9AI score0.00237EPSS