Github.Com Rancher Wrangler vulnerabilities
2 known vulnerabilities affecting github.com/rancher_wrangler.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2022-31249HIGH≥ 0, < 0.7.4-security1≥ 0.8.0, < 0.8.5-security1+2 more2023-01-25
CVE-2022-31249 [HIGH] CWE-77 Command injection in Git package in Wrangler
Command injection in Git package in Wrangler
### Impact
A command injection vulnerability was discovered in Wrangler's Git package affecting versions up to and including `v1.0.0`.
Wrangler's Git package uses the underlying Git binary present in the host OS or container image to execute Git operations. Specially crafted commands can be passed to Wrangler that will change their behavior and cause confusion when executed t
ghsaosv
CVE-2022-43756MEDIUM≥ 0, < 0.7.4-security1≥ 0.8.0, < 0.8.5-security1+2 more2023-01-25
CVE-2022-43756 [MEDIUM] CWE-150 Denial of service (DoS) when processing Git credentials
Denial of service (DoS) when processing Git credentials
### Impact
A denial of services (DoS) vulnerability was discovered in Wrangler Git package affecting versions up to and including `v1.0.0`.
Specially crafted Git credentials can result in a denial of service (DoS) attack on an application that uses Wrangler due to the exhaustion of the available memory and CPU resources. This is caused by a lack of in
ghsaosv