CVE-2024-39930 | Gogs up to 0.13.0 SSH Connection internal/ssh/ssh.go argument injection

Inserito da Angelo Barbosa | Lug 4, 2024 | CVE

A vulnerability was found in Gogs up to 0.13.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file internal/ssh/ssh.go of the component SSH Connection Handler. The manipulation leads to argument injection.

This vulnerability is known as CVE-2024-39930. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39930 | Gogs up to 0.13.0 SSH Connection internal/ssh/ssh.go argument injection

Post correlati

CVE-2024-32430 | ActiveCampaign Plugin up to 8.1.14 on WordPress server-side request forgery

CVE-2024-28050 | Intel Arc/Iris 31.0.101.4255 access control (intel-sa-01130)

CVE-2024-3270 | ThingsBoard up to 3.6.2 AdvancedFeature access control

CVE-2024-35633 | CreativeThemes Blocksy Companion Plugin up to 2.0.42 on WordPress server-side request forgery