CVE-2024-22038

CWE-593 documents3 sources
Severity
6.8MEDIUM
EPSS
0.0%
top 93.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Suse Opensuse Factory
Timeline
PublishedNov 28

Description

Various problems in obs-scm-bridge allows attackers that create specially crafted git repositories to leak information of cause denial of service.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages1 packages

CVEListV5suse/opensuse_factory< 0.5.2

🔴Vulnerability Details

2
CVEList
DoS attacks, information leaks etc. with crafted Git repositories in obs-scm-bridge2024-11-28
GHSA
GHSA-4hx2-h4m6-qchx: Various problems in obs-scm-bridge allows attackers that create specially crafted git repositories to leak information of cause denial of service2024-11-28
CVE-2024-22038 (MEDIUM CVSS 6.8) | Various problems in obs-scm-bridge | cvebase.io