CVE-2017-9462
HIGHMercurial <4.1.3 - RCE
Title source: llmDescription
In Mercurial before 4.1.3, "hg serve --stdio" allows remote authenticated users to launch the Python debugger, and consequently execute arbitrary code, by using --debugger as a repository name.
Exploits (1)
metasploit
WORKING POC
EXCELLENT
by claudijd · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/ssh/mercurial_ssh_exec.rb
References (8)
Scores
CVSS v3
8.8
EPSS
0.4870
EPSS Percentile
97.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-732
Status
published
Products (19)
debian/debian_linux
8.0
debian/debian_linux
9.0
mercurial/mercurial
< 4.1.3
pypi/mercurial
0 - 4.1.3PyPI
redhat/enterprise_linux_desktop
6.0
redhat/enterprise_linux_desktop
7.0
redhat/enterprise_linux_server
6.0
redhat/enterprise_linux_server
7.0
redhat/enterprise_linux_server_aus
7.3
redhat/enterprise_linux_server_aus
7.4
... and 9 more
Published
Jun 06, 2017
Tracked Since
Feb 18, 2026