Lucene search

GitHub Advisory DatabaseGHSA-3F95-R44V-8MRG

HistoryMar 12, 2022 - 12:00 a.m.

Command injection in simple-git

2022-03-1200:00:33

CWE-74

CWE-77

GitHub Advisory Database

github.com

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.006 Low

EPSS

Percentile

77.8%

JSON

The package simple-git before 3.3.0 is vulnerable to Command Injection via argument injection. When calling the .fetch(remote, branch, handlerFn) function, both the remote and branch parameters are passed to the git fetch subcommand. By injecting some git options, it was possible to get arbitrary command execution.

Affected configurations

Vulners

Node

simplegitRange<3.3.0

CPENameOperatorVersion
simple-gitlt3.3.0

CPE	Name	Operator	Version
	simple-git	lt	3.3.0

References

github.com/advisories/GHSA-3f95-r44v-8mrg

github.com/steveukx/git-js/pull/767

github.com/steveukx/git-js/releases/tag/simple-git%403.3.0

nvd.nist.gov/vuln/detail/CVE-2022-24433

snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-2421245

snyk.io/vuln/SNYK-JS-SIMPLEGIT-2421199

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.006 Low

EPSS

Percentile

77.8%

JSON

Related for GHSA-3F95-R44V-8MRG