Vulnerabilities > Atlassian > Sourcetree > 2.5

DATE CVE VULNERABILITY TITLE RISK
2019-03-08 CVE-2018-20234 Argument Injection or Modification vulnerability in Atlassian Sourcetree
There was an argument injection vulnerability in Atlassian Sourcetree for macOS from version 1.2 before version 3.1.1 via filenames in Mercurial repositories.
network
low complexity
atlassian CWE-88
8.8
8.8
2018-11-05 CVE-2018-13396 Unspecified vulnerability in Atlassian Sourcetree
There was an argument injection vulnerability in Sourcetree for macOS from version 1.0b2 before version 3.0.0 via Git subrepositories in Mercurial repositories.
network
low complexity
atlassian
8.8
8.8
2018-07-24 CVE-2018-13385 Argument Injection or Modification vulnerability in Atlassian Sourcetree
There was an argument injection vulnerability in Sourcetree for macOS via filenames in Mercurial repositories.
network
low complexity
atlassian CWE-88
critical
 9.8
9.8
2018-01-26 CVE-2017-14592 Command Injection vulnerability in Atlassian Sourcetree
Sourcetree for macOS had several argument and command injection bugs in Mercurial and Git repository handling.
network
low complexity
atlassian CWE-77
8.8
8.8
2017-05-04 CVE-2017-8768 OS Command Injection vulnerability in Atlassian Sourcetree
Atlassian SourceTree v2.5c and prior are affected by a command injection in the handling of the sourcetree:// scheme.
network
low complexity
atlassian CWE-78
critical
 9.8
9.8