Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2022-24439

🗓️ 12 Dec 2022 01:10:49Reported by snykType 
cve
 cve🔗 web.nvd.nist.gov👁 182 Views

All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to improper user input validation

Show more
Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
OSV		PYSEC-2022-42992
6 Dec 202205:15
osv
OSV		python-git vulnerability
22 Mar 202315:02
osv
OSV		CVE-2022-24439
6 Dec 202205:15
osv
OSV		GitPython vulnerable to Remote Code Execution due to improper user input validation
6 Dec 202206:30
osv
OSV		OPENSUSE-SU-2024:13510-1 python3-bandit-1.7.6-1.1 on GA media
15 Jun 202400:00
osv
OSV		PYSEC-2023-137
11 Aug 202307:15
osv
OSV		python-git - security update
25 Jul 202300:00
osv
OSV		CVE-2023-40267
11 Aug 202307:15
osv
OSV		GitPython vulnerable to remote code execution due to insufficient sanitization of input arguments
11 Aug 202309:30
osv
OSV		DLA-3939-1 python-git - security update
29 Oct 202400:00
osv
Rows per page
Nvd
Node
gitpython_projectgitpythonRange<3.1.30python
Node
fedoraprojectfedoraMatch36
OR
fedoraprojectfedoraMatch37
OR
fedoraprojectfedoraMatch38
Node
debiandebian_linuxMatch10.0
[
  {
    "vendor": "n/a",
    "product": "GitPython",
    "versions": [
      {
        "version": "0",
        "status": "affected",
        "lessThan": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]
SourceLink
securitywww.security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858
listswww.lists.debian.org/debian-lts-announce/2023/07/msg00024.html
listswww.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH/
listswww.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X/
listswww.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN/
securitywww.security.gentoo.org/glsa/202311-01
listswww.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R/
githubwww.github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py%23L1249

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
12 Dec 2022 01:49Current
9High risk
Vulners AI Score9
CVSS38.1 - 9.8
EPSS0.00933
CWE-20
gitpythonpackagevulnerabilityrcecve-2022-24439securitynvd
182
.json
Report