CVE-2017-1000116

CRITICAL

Mercurial < 4.3 - OS Command Injection via SSH Hostname

Title source: llm
STIX 2.1

Description

Mercurial prior to 4.3 did not adequately sanitize hostnames passed to ssh, leading to possible shell-injection attacks.

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/100290
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2017/dsa-3963
Third Party Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:2489
Patch, Third Party Advisory, VDB Entry vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201709-18

Scores

CVSS v3 9.8
EPSS 0.0573
EPSS Percentile 92.1%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-78
Status published
Products (14)
debian/debian_linux 8.0
debian/debian_linux 9.0
mercurial/mercurial < 4.3
pypi/mercurial 0 - 4.3PyPI
redhat/enterprise_linux_desktop 7.0
redhat/enterprise_linux_server 7.0
redhat/enterprise_linux_server_aus 7.4
redhat/enterprise_linux_server_aus 7.6
redhat/enterprise_linux_server_eus 7.4
redhat/enterprise_linux_server_eus 7.5
... and 4 more
Published Oct 05, 2017
Tracked Since Feb 18, 2026