Ubuntu.comUB:CVE-2015-0850

HistoryJun 02, 2015 - 12:00 a.m.

CVE-2015-0850

2015-06-0200:00:00

ubuntu.com

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.018

Percentile

88.3%

JSON

The Git plugin for FusionForge before 6.0rc4 allows remote attackers to
execute arbitrary code via an unspecified parameter when creating a
secondary Git repository.

References

fusionforge.org/forum/forum.php?forum_id=41

launchpad.net/bugs/cve/CVE-2015-0850

nvd.nist.gov/vuln/detail/CVE-2015-0850

scm.fusionforge.org/anonscm/gitweb?p=fusionforge/fusionforge.git;a=commitdiff;h=afcfe76f5195af4566ff3a8280714383fcdb5a67

security-tracker.debian.org/tracker/CVE-2015-0850

www.cve.org/CVERecord?id=CVE-2015-0850

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.018

Percentile

88.3%

JSON

Related for UB:CVE-2015-0850