VDB

GCVE-110-MAGEIA-2017-404

GCVE-110-MAGEIA-2017-404
Advisory Published
Vulnetix · Advisory published November 7, 2017
The `git` subcommand `cvsserver` is a Perl script which makes excessive use of the backtick operator to invoke `git`. Unfortunately user input is used within some of those invocations, which can be a OS Command Injection vulnerability (CVE-2017-14867).

Affected Products

VendorProductVersionsPlatforms
Mageiagit0 (affected), 2.13.6-1.mga6 (unaffected)

Browse GCVE Records

73,196 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›