Vulnerabilities (CVE)

Filtered by vendor Gnu Subscribe
Filtered by product Cvs
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-12836 3 Canonical, Debian, Gnu 3 Ubuntu Linux, Debian Linux, Cvs 2024-02-28 5.1 MEDIUM 7.5 HIGH
CVS 1.12.x, when configured to use SSH for remote repositories, might allow remote attackers to execute arbitrary code via a repository URL with a crafted hostname, as demonstrated by "-oProxyCommand=id;localhost:/bar."
CVE-2004-0778 1 Gnu 1 Cvs 2024-02-28 5.0 MEDIUM N/A
CVS 1.11.x before 1.11.17, and 1.12.x before 1.12.9, allows remote attackers to determine the existence of arbitrary files and directories via the -X command for an alternate history file, which causes different error messages to be returned.