Mercurial version 4.5 and earlier contains a Incorrect Access Control (CWE-285) vulnerability in Protocol server that can result in Unauthorized data access. This attack appear to be exploitable via network connectivity. This vulnerability appears to have been fixed in 4.5.1.
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-1000132.json"
[
{
"source": "https://github.com/opencv/opencv/commit/705e7b207c4c95231fb18c7ddfad353795aa6531",
"digest": {
"line_hashes": [
"56597500756052219773632218668066966111",
"6587545898721784835547373346335185416",
"198667531170726646627279438419670199864",
"287462213613758570992058903551409607978"
],
"threshold": 0.9
},
"id": "CVE-2018-1000132-9a726fda",
"deprecated": false,
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "modules/core/src/ocl.cpp"
}
}
]