CVE-2018-13396
CVE-2018-13396
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS —EPSS 1.9%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
05 nov 2018Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
There was an argument injection vulnerability in Sourcetree for macOS from version 1.0b2 before version 3.0.0 via Git subrepositories in Mercurial repositories. An attacker with permission to commit to a Mercurial repository linked in Sourcetree for macOS is able to exploit this issue to gain code execution on the system.
Produtos afetados
Atlassian · Sourcetree for macOSQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →