CVE-2018-10859

EPSS 0.50% · P66 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-10859

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

git-annex is vulnerable to an Information Exposure when decrypting files. A malicious server for a special remote could trick git-annex into decrypting a file that was encrypted to the user's gpg key. This attack could be used to expose encrypted data that was never stored in git-annex

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

信息暴露

Source: NVD (National Vulnerability Database)

Vulnerability Title

git-annex 信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

git-annex是一套分布式文件同步系统。 git-annex中存在信息泄露漏洞。攻击者可借助恶意的服务器利用该漏洞泄露被加密的数据。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
[UNKNOWN]	git-annex	n/a	-

II. Public POCs for CVE-2018-10859

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-10859

请登录查看更多情报信息。

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10859x_refsource_CONFIRM
https://lists.debian.org/debian-lts-announce/2018/09/msg00004.htmlmailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2018-10859

Same Patch Batch · [UNKNOWN] · 2018-07-16 · 6 CVEs total

CVE-2017-2638		infinispan 安全漏洞
CVE-2017-7468		Haxx curl/libcurl 安全漏洞
CVE-2017-15137		Red Hat OpenShift 安全漏洞
CVE-2018-1046		pdns 缓冲区错误漏洞
CVE-2018-10857		git-annex 安全漏洞

IV. Related Vulnerabilities

Same product: git-annex

Same vendor: [UNKNOWN]

Same weakness: CWE-200

V. Comments for CVE-2018-10859

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-10859

I. Basic Information for CVE-2018-10859

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-10859

III. Intelligence Information for CVE-2018-10859

Same Patch Batch · [UNKNOWN] · 2018-07-16 · 6 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-10859

Leave a comment