Lucene search

K
osvGoogleOSV:GHSA-8JMW-WJR8-2X66
HistoryJul 02, 2022 - 12:00 a.m.

Command injection in git-clone

2022-07-0200:00:19
Google
osv.dev
209

0.004 Low

EPSS

Percentile

73.9%

All versions of package git-clone are vulnerable to Command Injection due to insecure usage of the --upload-pack feature of git.

Credits

Credit to @lirantal for discovering this vulnerability.

CPENameOperatorVersion
git-clonele0.2.0

0.004 Low

EPSS

Percentile

73.9%

Related for OSV:GHSA-8JMW-WJR8-2X66