CVE-2017-16228

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Dulwich (affected versions not specified)

Description The issue allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

Related Identifiers

CVE-2017-16228

GHSA-CWWH-4382-6FWR

MGASA-2018-0445

OPENSUSE-SU-2018_2213-1

OPENSUSE-SU-2024:11228-1

OPENSUSE-SU-2024:14139-1

PYSEC-2017-12

SUSE-SU-2018:2047-1

SUSE-SU-2018_2047-1

Dulwich

Suse