Lucene search

K

Veracode Vulnerability DatabaseVERACODE:29070

HistoryJan 21, 2021 - 3:36 a.m.

Arbitrary Code Execution

2021-01-2103:36:41

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

9

arbitrary code execution

git-big-picture

branch name

code execution

software

EPSS

0.005

Percentile

76.8%

git-big-picture before 1.0.0 mishandles ’ characters in a branch name, leading to code execution.

References

github.com/git-big-picture/git-big-picture/pull/27

github.com/git-big-picture/git-big-picture/pull/62

github.com/git-big-picture/git-big-picture/releases/tag/v1.0.0

security-tracker.debian.org/tracker/CVE-2021-3028

EPSS

0.005

Percentile

76.8%

Related for VERACODE:29070

nvd1 prion1 cvelist1 osv3 cve1 ubuntucve1 debiancve1 github1