cbcvebase.
CVE-2017-12836
published 2017-08-24

CVE-2017-12836: CVS 1.12.x, when configured to use SSH for remote repositories, might allow remote attackers to execute arbitrary code via a repository URL with a crafted…

PriorityP345high7.5CVSS 3.0
AVNACHPRNUIRSUCHIHAH
EPSS
5.97%
92.4th percentile
CVS 1.12.x, when configured to use SSH for remote repositories, might allow remote attackers to execute arbitrary code via a repository URL with a crafted hostname, as demonstrated by "-oProxyCommand=id;localhost:/bar."

Affected

42 ranges· showing 25
VendorProductVersion rangeFixed in
canonicalbazaar<= 2.7.0
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
cvscvs>= 0 < 2:1.12.13+real-242:1.12.13+real-24
cvscvs>= 0 < 2:1.12.13+real-242:1.12.13+real-24
cvscvs>= 0 < 2:1.12.13+real-242:1.12.13+real-24
cvscvs>= 0 < 2:1.12.13+real-242:1.12.13+real-24
debianbreezy< breezy 3.0.0~bzr6772-1 (bookworm)breezy 3.0.0~bzr6772-1 (bookworm)
debianbzr< breezy 3.0.0~bzr6772-1 (bookworm)breezy 3.0.0~bzr6772-1 (bookworm)
debianbzr0 – 2.7.0
debiancvs< cvs 2:1.12.13+real-24 (bookworm)cvs 2:1.12.13+real-24 (bookworm)
debiandebian_linux
debiandebian_linux
debiandulwich< dulwich 0.18.5-1 (bookworm)dulwich 0.18.5-1 (bookworm)
debianfossil< fossil 1:2.4-1 (bookworm)fossil 1:2.4-1 (bookworm)
debiangit-annex< git-annex 6.20170818-1 (bookworm)git-annex 6.20170818-1 (bookworm)
dulwich_projectdulwich<= 0.18.4
dulwich_projectdulwich>= 0 < 0.18.5-10.18.5-1
dulwich_projectdulwich>= 0 < 0.18.5-10.18.5-1
dulwich_projectdulwich>= 0 < 0.18.5-10.18.5-1
dulwich_projectdulwich>= 0 < 0.18.5-10.18.5-1
dulwich_projectdulwich>= 0 < 0.18.50.18.5
fossil-scmfossil>= 0 < 1:2.4-11:2.4-1
fossil-scmfossil>= 0 < 1:2.4-11:2.4-1

CVSS provenance

nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.05.1MEDIUMAV:N/AC:H/Au:N/C:P/I:P/A:P
ghsa9.8CRITICAL
osv9.8CRITICAL
vendor_debian9.8CRITICAL
vendor_redhat9.8CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.