VULHUB ™

CVS versions prior to 1.11.11 that are configured to run with pserver access enabled, have been reported prone to an arbitrary code execution vulnerability. The vulnerability may be exploitable by users with specific access levels. CVS vendors have released a security update. This update supposedly drops root privileges after a user login, to prevent potential privileged code execution.

CVS versions prior to 1.11.11 that are configured to run with pserver access enabled, have been reported prone to an arbitrary code execution vulnerability. The vulnerability may be exploitable by users with specific access levels. CVS vendors have released a security update. This update supposedly drops root privileges after a user login, to prevent potential privileged code execution.