Security Advisory

CVE-2018-20234

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-03-08 18:00:00

Last updated 2024-09-16 23:30:34

Assigner atlassian

State PUBLISHED

Description

There was an argument injection vulnerability in Atlassian Sourcetree for macOS from version 1.2 before version 3.1.1 via filenames in Mercurial repositories. A remote attacker with permission to commit to a Mercurial repository linked in Sourcetree for macOS is able to exploit this issue to gain code execution on the system.

← Browse all CVEs View on cve.org ↗