Vulnerability Name:

CVE-2017-1000117

Assigned:2017-08-10
Published:2017-08-10
Updated:2018-01-04
Summary:A malicious third-party can give a crafted "ssh://..." URL to an unsuspecting victim, and an attempt to visit the URL can result in any program that exists on the victim's machine being executed. Such a URL could be placed in the .gitmodules file of a malicious project, and an unsuspecting victim could be tricked into running "git clone --recurse-submodules" to trigger the vulnerability.
CVSS v3 Severity:8.8 High (CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
8.2 High (Temporal CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
8.8 High (CCN CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
8.2 High (CCN Temporal CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
6.3 Medium (REDHAT CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)
5.9 Medium (REDHAT Temporal CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:F/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
9.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-284
CWE-20
References:Source: DEBIAN
Type: UNKNOWN
DSA-3934

Source: BID
Type: VENDOR_ADVISORY
100283

Source: SECTRACK
Type: VENDOR_ADVISORY
1039131

Source: REDHAT
Type: UNKNOWN
RHSA-2017:2484

Source: REDHAT
Type: UNKNOWN
RHSA-2017:2485

Source: REDHAT
Type: UNKNOWN
RHSA-2017:2491

Source: REDHAT
Type: UNKNOWN
RHSA-2017:2674

Source: REDHAT
Type: UNKNOWN
RHSA-2017:2675

Source: XF
Type: UNKNOWN
git-cve20171000117-cmd-exec(130244)

Source: GENTOO
Type: VENDOR_ADVISORY
GLSA-201709-10

Source: CONFIRM
Type: VENDOR_ADVISORY
https://support.apple.com/HT208103

Source: EXPLOIT-DB
Type: VENDOR_ADVISORY
42599

Source: MISC
Type: VENDOR_ADVISORY
https://www.mail-archive.com/linux-kernel@vger.kernel.org/msg1466490.html

Vulnerable Configuration:Configuration 1:
  • cpe:/a:git-scm:git:2.7.5:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.8.0:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.8.0:rc0:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.8.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.8.0:rc2:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.8.0:rc3:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.8.1:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.8.2:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.8.3:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.8.4:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.8.5:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.9.0:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.9.0:rc0:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.9.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.9.0:rc2:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.9.1:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.9.2:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.9.3:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.9.4:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.10.0:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.10.0:rc0:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.10.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.10.0:rc2:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.10.1:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.10.2:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.10.3:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.11.0:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.11.0:rc0:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.11.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.11.0:rc2:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.11.0:rc3:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.11.1:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.11.2:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.12.0:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.12.0:rc0:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.12.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.12.0:rc2:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.12.1:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.12.2:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.12.3:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.13.0:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.13.0:rc0:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.13.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.13.0:rc2:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.13.1:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.13.2:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.13.3:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.13.4:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.14.0:*:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.14.0:rc0:*:*:*:*:*:*
  • OR cpe:/a:git-scm:git:2.14.0:rc1:*:*:*:*:*:*

  • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

  • Configuration RedHat 2:
  • cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20171000117
    V
    CVE-2017-1000117
    2018-09-18
    oval:com.ubuntu.xenial:def:20171000117000
    V
    CVE-2017-1000117 on Ubuntu 16.04 LTS (xenial) - medium.
    2017-10-04
    oval:com.ubuntu.trusty:def:20171000117000
    V
    CVE-2017-1000117 on Ubuntu 14.04 LTS (trusty) - medium.
    2017-10-04
    oval:com.redhat.rhsa:def:20172485
    P
    RHSA-2017:2485: git security update (Important)
    2017-08-16
    oval:com.redhat.rhsa:def:20172484
    P
    RHSA-2017:2484: git security update (Important)
    2017-08-16
    BACK
    git-scm git 2.7.5
    git-scm git 2.8.0
    git-scm git 2.8.0 rc0
    git-scm git 2.8.0 rc1
    git-scm git 2.8.0 rc2
    git-scm git 2.8.0 rc3
    git-scm git 2.8.1
    git-scm git 2.8.2
    git-scm git 2.8.3
    git-scm git 2.8.4
    git-scm git 2.8.5
    git-scm git 2.9.0
    git-scm git 2.9.0 rc0
    git-scm git 2.9.0 rc1
    git-scm git 2.9.0 rc2
    git-scm git 2.9.1
    git-scm git 2.9.2
    git-scm git 2.9.3
    git-scm git 2.9.4
    git-scm git 2.10.0
    git-scm git 2.10.0 rc0
    git-scm git 2.10.0 rc1
    git-scm git 2.10.0 rc2
    git-scm git 2.10.1
    git-scm git 2.10.2
    git-scm git 2.10.3
    git-scm git 2.11.0
    git-scm git 2.11.0 rc0
    git-scm git 2.11.0 rc1
    git-scm git 2.11.0 rc2
    git-scm git 2.11.0 rc3
    git-scm git 2.11.1
    git-scm git 2.11.2
    git-scm git 2.12.0
    git-scm git 2.12.0 rc0
    git-scm git 2.12.0 rc1
    git-scm git 2.12.0 rc2
    git-scm git 2.12.1
    git-scm git 2.12.2
    git-scm git 2.12.3
    git-scm git 2.13.0
    git-scm git 2.13.0 rc0
    git-scm git 2.13.0 rc1
    git-scm git 2.13.0 rc2
    git-scm git 2.13.1
    git-scm git 2.13.2
    git-scm git 2.13.3
    git-scm git 2.13.4
    git-scm git 2.14.0
    git-scm git 2.14.0 rc0
    git-scm git 2.14.0 rc1