CVE-2018-13347
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-13347
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
mpatch.c in Mercurial before 4.6.1 mishandles integer addition and subtraction, aka OVE-20180430-0002.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Mercurial 整数错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Mercurial是软件开发者Matt Mackall所研发的一套使用Python语言编写的跨平台的分布式版本控制软件。该软件支持同时处理纯文本和二进制文件等。 Mercurial 4.6.1之前版本中的mpatch.c文件存在整数错误漏洞,该漏洞源于程序没有正确的处理整数的加减法。目前尚无此漏洞的相关信息,请随时关注CNNVD或厂商公告。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2018-13347
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-13347
请登录查看更多情报信息。
Vendor Advisories for CVE-2018-13347 (1)
Mailing List Discussions for CVE-2018-13347 (1)
Other References for CVE-2018-13347 (3)
- https://www.mercurial-scm.org/repo/hg/rev/1acfc35d478cx_refsource_MISC
Same Patch Batch · n/a · 2018-07-06 · 13 CVEs total
| CVE-2018-13410 | Info-ZIP Zip 安全漏洞 | |
| CVE-2018-13407 | Jirafeau 跨站请求伪造漏洞 | |
| CVE-2018-13408 | Jirafeau 跨站脚本漏洞 | |
| CVE-2018-13409 | Jirafeau 跨站脚本漏洞 | |
| CVE-2018-11124 | Open-AudIT 跨站脚本漏洞 | |
| CVE-2018-13108 | ADB broadband gateways/routers on Epicentro platform 安全漏洞 | |
| CVE-2018-13109 | ADB broadband gateways/routers on Epicentro platform 安全漏洞 | |
| CVE-2018-13110 | ADB broadband gateways/routers on Epicentro platform 权限许可和访问控制问题漏洞 | |
| CVE-2018-13405 | Linux kernel 权限许可和访问控制问题漏洞 | |
| CVE-2018-13406 | Linux kernel 数字错误漏洞 | |
| CVE-2018-13346 | Mercurial 输入验证错误漏洞 | |
| CVE-2018-13348 | Mercurial 安全漏洞 |
IV. Related Vulnerabilities
V. Comments for CVE-2018-13347
No comments yet