vulnerability
Red Hat: CVE-2018-1000132: Moderate: mercurial security update (RHSA-2019:2276)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:N/AC:L/Au:N/C:P/I:P/A:N) | 2018-03-14 | 2019-08-07 | 2021-03-03 |
Severity
6
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:N)
Published
2018-03-14
Added
2019-08-07
Modified
2021-03-03
Description
Mercurial version 4.5 and earlier contains a Incorrect Access Control (CWE-285) vulnerability in Protocol server that can result in Unauthorized data access. This attack appear to be exploitable via network connectivity. This vulnerability appears to have been fixed in 4.5.1.
Solution(s)
redhat-upgrade-emacs-mercurialredhat-upgrade-emacs-mercurial-elredhat-upgrade-mercurialredhat-upgrade-mercurial-debuginforedhat-upgrade-mercurial-hgk
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.