Discover the impact of CVE-2019-3902 affecting Mercurial versions prior to 4.9. Learn about the exploit, mitigation steps, and prevention measures to secure your systems.
A vulnerability has been discovered in versions of Mercurial prior to 4.9. An exploit involving the usage of symbolic links and subrepositories allowed malicious actors to bypass Mercurial's path-checking mechanism, permitting them to create files in locations outside of a repository's scope.
Understanding CVE-2019-3902
This CVE affects the Mercurial version before 4.9 and poses a medium severity risk with a CVSS base score of 5.1.
What is CVE-2019-3902?
The Impact of CVE-2019-3902
Technical Details of CVE-2019-3902
This section provides detailed technical information about the CVE.
Vulnerability Description
Affected Systems and Versions
Exploitation Mechanism
Mitigation and Prevention
Protect your systems from CVE-2019-3902 with the following steps:
Immediate Steps to Take
Long-Term Security Practices
Patching and Updates