CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Gnu: >> Cvs >> 1.12.13 Security Vulnerabilities

CVE-2017-12836

CVS 1.12.x, when configured to use SSH for remote repositories, might allow remote attackers to execute arbitrary code via a repository URL with a crafted hostname, as demonstrated by "-oProxyCommand=id;localhost:/bar."

CVSS Score

7.5

EPSS Score

0.044

Published

2017-08-24

Page 1

Vulnerabilities

Vulnerable Software

Gnu: >> Cvs >> 1.12.13 Security Vulnerabilities

Products

Pricing

Contact Us