CVE-2022-30781

High

Gitea before 1.16.7 does not escape git fetch remote.

mitre·CWE-116·Published 2022-05-16

CVSS

7.5

EPSS

0.88

KEV

Exploits

cve.orgen

53 chars

Gitea before 1.16.7 does not escape git fetch remote.

NVDen

53 chars

Gitea before 1.16.7 does not escape git fetch remote.

OSV.deven

55 chars

Shell command injection in gitea in code.gitea.io/gitea

GHSAen

109 chars

Gitea before 1.16.7 does not escape the shell out for `git fetch remote` allowing for shell command injection

NVDes

66 chars

Gitea versiones anteriores a 1.16.7, no escapa de git fetch remote

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:N/I:P/A:N
3.1	Primary	NVD	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N