CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2018-3785

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0630%
EPSS Percentile33.00th
Published2018年8月17日
Last Modified2024年11月21日

Vulnerability Description

A command injection in git-dummy-commit v1.3.0 allows os level commands to be executed due to an unescaped parameter.

Affected Platforms (CPE)

📦
Git Dummy Commit Project

Git Dummy Commit

= 1.3.0

References & Advisories

🔗 https://hackerone.com/reports/341710
🔗 https://hackerone.com/reports/341710

相關漏洞威脅

CVE-2018-010110.0

A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could ...

CVE-2018-487210.0

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006...

CVE-2018-261110.0

Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products Suite (subcomponent: Core Service...

CVE-2018-100012410.0

I Librarian I-librarian version 4.8 and earlier contains a XML External Entity (XXE) vulnerability in line 154 of importmetadata.p...