Miggo Logo

CVE-2016-3068: Mercurial arbitrary code execution via a crafted git ext:: URL

8.8

CVSS Score
3.0

Basic Information

EPSS Score
0.86932%
Published
5/14/2022
Updated
9/24/2024
KEV Status
No
Technology
TechnologyPython

Technical Details

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
mercurialpip< 3.7.33.7.3

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis:
In progress

WAF Protection Rules

WAF Rule

M*r*uri*l ***or* *.*.* *llows r*mot* *tt**k*rs to *x**ut* *r*itr*ry *o** vi* * *r**t** *it *xt:: URL w**n *lonin* * su*r*pository.

Reasoning

No *n*lysis *v*il**l*