CVE-2017-17831
published 2017-12-21CVE-2017-17831: GitHub Git LFS before 2.1.1 allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, located on a…
PriorityP354high8.8CVSS 3.0
AVNACLPRNUIRSUCHIHAH
EPSS
3.68%
88.3th percentile
GitHub Git LFS before 2.1.1 allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, located on a "url =" line in a .lfsconfig file within a repository.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | git-lfs | — | — |
| git-lfs | git-lfs | >= 0 < 2.3.4-1 | 2.3.4-1 |
| git_large_file_storage_project | git_large_file_storage | < 2.1.1 | 2.1.1 |
| github.com | git-lfs_git-lfs | >= 0 < 2.1.1-0.20170519163204-f913f5f9c7c6 | 2.1.1-0.20170519163204-f913f5f9c7c6 |
| github.com | git-lfs_git-lfs | >= 0 < 2.1.1-0.20170519163204-f913f5f9c7c6+incompatible | 2.1.1-0.20170519163204-f913f5f9c7c6+incompatible |
CVSS provenance
nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv8.8HIGH
vendor_debian8.8LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GitHub Git LFS Arbitrary command execution vulnerability
ghsa·2022-05-14
CVE-2017-17831 [HIGH] CWE-20 GitHub Git LFS Arbitrary command execution vulnerability
GitHub Git LFS Arbitrary command execution vulnerability
GitHub Git LFS before 2.1.1 allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, located on a `url =` line in a `.lfsconfig` file within a repository.
### Specific Go Packages Affected
github.com/git-lfs/git-lfs/lfsapi
OSV
GitHub Git LFS Arbitrary command execution vulnerability
osv·2022-05-14
CVE-2017-17831 [HIGH] GitHub Git LFS Arbitrary command execution vulnerability
GitHub Git LFS Arbitrary command execution vulnerability
GitHub Git LFS before 2.1.1 allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, located on a `url =` line in a `.lfsconfig` file within a repository.
### Specific Go Packages Affected
github.com/git-lfs/git-lfs/lfsapi
OSV
Arbitrary command execution in github.com/git-lfs/git-lfs
osv·2021-04-14
CVE-2017-17831 Arbitrary command execution in github.com/git-lfs/git-lfs
Arbitrary command execution in github.com/git-lfs/git-lfs
Arbitrary command execution can be triggered by improperly sanitized SSH URLs in LFS configuration files. This can be triggered by cloning a malicious repository.
OSV
CVE-2017-17831: GitHub Git LFS before 2
osv·2017-12-21·CVSS 8.8
CVE-2017-17831 [HIGH] CVE-2017-17831: GitHub Git LFS before 2
GitHub Git LFS before 2.1.1 allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, located on a "url =" line in a .lfsconfig file within a repository.
Debian
CVE-2017-17831: git-lfs - GitHub Git LFS before 2.1.1 allows remote attackers to execute arbitrary command...
vendor_debian·2017·CVSS 8.8
CVE-2017-17831 [HIGH] CVE-2017-17831: git-lfs - GitHub Git LFS before 2.1.1 allows remote attackers to execute arbitrary command...
GitHub Git LFS before 2.1.1 allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, located on a "url =" line in a .lfsconfig file within a repository.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://blog.recurity-labs.com/2017-08-10/scm-vulnshttp://www.securityfocus.com/bid/102926https://confluence.atlassian.com/sourcetreekb/sourcetree-security-advisory-2018-01-24-942834324.htmlhttps://github.com/git-lfs/git-lfs/pull/2242https://github.com/git-lfs/git-lfs/releases/tag/v2.1.1http://blog.recurity-labs.com/2017-08-10/scm-vulnshttp://www.securityfocus.com/bid/102926https://confluence.atlassian.com/sourcetreekb/sourcetree-security-advisory-2018-01-24-942834324.htmlhttps://github.com/git-lfs/git-lfs/pull/2242https://github.com/git-lfs/git-lfs/releases/tag/v2.1.1
2017-12-21
Published