Vulnerabilities > GIT Annex Project > GIT Annex > 4.20131101
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-20 | CVE-2017-12976 | Improper Input Validation vulnerability in Git-Annex Project Git-Annex git-annex before 6.20170818 allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, as demonstrated by an ssh://-eProxyCommand= URL, a related issue to CVE-2017-9800, CVE-2017-12836, CVE-2017-1000116, and CVE-2017-1000117. | 8.8 |