VDB

GCVE-110-MAGEIA-2020-175

GCVE-110-MAGEIA-2020-175
Advisory Published
Vulnetix · Advisory published April 16, 2020
With a crafted URL that contains a newline in it, the credential helper machinery can be fooled to give credential information for a wrong host. The attack has been made impossible by forbidding a newline character in any value passed via the credential protocol (CVE-2020-5260).

Affected Products

VendorProductVersionsPlatforms
Mageianvidia3400 (affected), 340.108-7.mga7.nonfree (unaffected)
Mageiagit0 (affected), 2.21.2-1.mga7 (unaffected), 0 (affected), 2.21.2-1.mga7 (unaffected)

Browse GCVE Records

73,393 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›