Various problems in obs-scm-bridge allows attackers that create specially crafted git repositories to leak information of cause denial of service.
History

Thu, 28 Nov 2024 13:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 28 Nov 2024 09:45:00 +0000

Type Values Removed Values Added
Description Various problems in obs-scm-bridge allows attackers that create specially crafted git repositories to leak information of cause denial of service.
Title DoS attacks, information leaks etc. with crafted Git repositories in obs-scm-bridge
Weaknesses CWE-59
References
Metrics cvssV3_1

{'score': 7.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H'}

cvssV4_0

{'score': 6.8, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: suse

Published: 2024-11-28T09:38:03.449Z

Updated: 2024-11-28T12:15:16.693Z

Reserved: 2024-01-04T12:38:34.026Z

Link: CVE-2024-22038

cve-icon Vulnrichment

Updated: 2024-11-28T12:09:33.307Z

cve-icon NVD

Status : Received

Published: 2024-11-28T10:15:07.567

Modified: 2024-11-28T10:15:07.567

Link: CVE-2024-22038

cve-icon Redhat

No data.