Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2013-4490

6 documents6 sources

Severity

6.5MEDIUM

EPSS

49.8%

top 2.19%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Gitlab Gitlab-shell Gitlab Gitlab

Timeline

PublishedMay 13

Latest updateMay 17

Description

The SSH key upload feature (lib/gitlab_keys.rb) in gitlab-shell before 1.7.3, as used in GitLab 5.0 before 5.4.1 and 6.x before 6.2.3, allows remote authenticated users to execute arbitrary commands via shell metacharacters in the public key.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 8.0 | Impact: 6.4

Affected Packages2 packages

▶NVDgitlab/gitlab-shell1.7.2+9

▶NVDgitlab/gitlab11 versions+10

Patches

Patch: www.gitlab.com ↗Patch: www.gitlab.com ↗

🔴Vulnerability Details

GHSA

GHSA-9hhr-gwc7-jcvh: The SSH key upload feature (lib/gitlab_keys↗2022-05-17

▶

CVEList

CVE-2013-4490: The SSH key upload feature (lib/gitlab_keys↗2014-05-13

▶

💥Exploits & PoCs

Exploit-DB

Gitlab-shell - Code Execution (Metasploit)↗2014-08-19

▶

📋Vendor Advisories

GitLab

CVE-2013-4490: The SSH key upload feature (lib/gitlab_keys.rb) in gitlab-shell before 1.7.3, as used in GitLab 5.0 before 5.4.1 and 6.x before 6.2.3, allows remote a↗2014-05-13

▶

Debian

CVE-2013-4490: gitlab - The SSH key upload feature (lib/gitlab_keys.rb) in gitlab-shell before 1.7.3, as...↗2013

▶