pkg:Debian/fossil
3 total CVEsHIGH3
✅ Check your installed version
All known vulnerabilities
- HIGH8.8CVE-2020-24614Fossil before 2.10.2, 2.11.x before 2.11.2, and 2.12.x before 2.12.1 allows remote authenticated users to execute arbitrary code.from 0, < 1:2.12.1-1
- HIGH8.8CVE-2017-17459http_transport.c in Fossil before 2.4, when the SSH sync protocol is used, allows user-assisted remote attackers to execute arbitrary comma…from 0, < 1:2.4-1
- HIGH7.5CVE-2021-36377Fossil before 2.14.2 and 2.15.x before 2.15.2 often skips the hostname check during TLS certificate validation.from 0, < 1:2.15.2-1