8.1 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
15.7%
A flaw was found in Git in a full copy of a Git repository. A prerequisite for this vulnerability is for an unauthenticated attacker to place a specialized repository on their target’s local system. If the victim were to clone this repository, it could result in arbitrary code execution.
To reduce the risk of exploitation, users are advised to refrain from using Git in repositories obtained from archives sourced from untrusted origins. This precautionary measure helps to minimize exposure to potential security threats until the necessary patches can be applied.