Lucene search
K

51 matches found

OSV
OSV
added 2025/12/04 12:41 p.m.1 views

ROOT-OS-DEBIAN-11-CVE-2024-32020 CVE-2024-32020 in rootio-git - Patched by Root

Root has patched CVE-2024-32020 in the rootio-git package for Root:Debian:11. Multiple fixed versions available...

3.9CVSS7.6AI score0.00519EPSS
Exploits1
OSV
OSV
added 2025/11/07 5:34 p.m.9 views

CLSA-2025-1762536892 git: Fix of CVE-2024-32020

CVE-2024-32020: refuse local clones of unowned repositories to prevent TOCTOU race conditions...

3.9CVSS5.8AI score0.00519EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

TencentOS Server 4: git (TSSA-2024:0952)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0952 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

7.8CVSS7.4AI score0.00956EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.13 views

TencentOS Server 3: git (TSSA-2024:0258)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0258 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

9CVSS7.6AI score0.25334EPSS
Exploits34References6
RedhatCVE
RedhatCVE
added 2025/04/10 4:15 p.m.19 views

CVE-2025-32020

The crud-query-parser library parses query parameters from HTTP requests and converts them to database queries. Improper neutralization of the order/sort parameter in the TypeORM adapter, which allows SQL injection. You are impacted by this vulnerability if you are using the TypeORM adapter,...

9.3CVSS7.6AI score0.0034EPSS
Exploits0References1
Circl
Circl
added 2025/04/08 4:40 p.m.4 views

CVE-2025-32020

creationtimestamp| type| source ---|---|--- 2025-04-08 16:40:22+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lmcw35rwey2c...

9.3CVSS6.8AI score0.0034EPSS
Exploits0References1
NVD
NVD
added 2025/04/08 3:15 p.m.12 views

CVE-2025-32020

The crud-query-parser library parses query parameters from HTTP requests and converts them to database queries. Improper neutralization of the order/sort parameter in the TypeORM adapter, which allows SQL injection. You are impacted by this vulnerability if you are using the TypeORM adapter,...

9.3CVSS0.0034EPSS
Exploits0References1
CVE
CVE
added 2025/04/08 3:5 p.m.62 views

CVE-2025-32020

CVE-2025-32020 affects the crud-query-parser library. The vulnerability arises from improper neutralization of the order/sort parameter in the TypeORM adapter when ordering is enabled and a property filter is not configured, enabling SQL injection. Impacted environments are those using the TypeOR...

9.3CVSS7.9AI score0.0034EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/08 3:5 p.m.4 views

CVE-2025-32020 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in crud-query-parser

The crud-query-parser library parses query parameters from HTTP requests and converts them to database queries. Improper neutralization of the order/sort parameter in the TypeORM adapter, which allows SQL injection. You are impacted by this vulnerability if you are using the TypeORM adapter,...

9.3CVSS7.9AI score0.0034EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-32020

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into t...

3.9CVSS6.6AI score0.00519EPSS
Exploits1References3
OSV
OSV
added 2025/02/03 8:55 a.m.5 views

SUSE-SU-2025:20049-1 Security update for git

This update for git fixes the following issues: git was updated to 2.45.1: CVE-2024-32002: recursive clones on case-insensitive filesystems that support symbolic links are susceptible to case confusion bsc1224168 CVE-2024-32004: arbitrary code execution during local clones bsc1224170...

9CVSS7.4AI score0.36003EPSS
Exploits34References21
OSV
OSV
added 2025/01/21 10:3 a.m.15 views

SUSE-SU-2025:0197-1 Security update for git

This update for git fixes the following issues: - CVE-2024-32002: Fix recursive clones on case-insensitive filesystems that support symbolic links are susceptible to case confusion. bsc1224168 - CVE-2024-32004: Fixed arbitrary code execution during local clones. bsc1224170 - CVE-2024-32020: Fix...

9CVSS7.9AI score0.25334EPSS
Exploits34References15
OSV
OSV
added 2024/11/12 5:24 p.m.9 views

CLSA-2024-1731432257 Fix CVE(s): CVE-2024-32020

SECURITY UPDATE: When performing a local clone of a repository we end up either copying or hardlinking the source repository into the target repository. - debian/patches/CVE-2024-32020.patch: builtin/clone: refuse local clones of unsafe repositories - CVE-2024-32020...

3.9CVSS6.8AI score0.00519EPSS
Exploits1References1
OSV
OSV
added 2024/11/01 4:44 p.m.8 views

CLSA-2024-1730479456 Fix CVE(s): CVE-2024-32020

SECURITY UPDATE: When performing a local clone of a repository we end up either copying or hardlinking the source repository into the target repository. - debian/patches/CVE-2024-32020.patch: builtin/clone: refuse local clones of unsafe repositories - CVE-2024-32020...

3.9CVSS5.8AI score0.00519EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2024/09/20 12:0 a.m.18 views

Ubuntu: Security Advisory (USN-7023-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS6.9AI score0.25334EPSS
Exploits34References2
OpenVAS
OpenVAS
added 2024/09/12 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for git (EulerOS-SA-2024-2365)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.5AI score0.25334EPSS
Exploits34References2
OpenVAS
OpenVAS
added 2024/09/12 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for git (EulerOS-SA-2024-2390)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.5AI score0.25334EPSS
Exploits34References2
OpenVAS
OpenVAS
added 2024/09/10 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for git (EulerOS-SA-2024-2350)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.5AI score0.25334EPSS
Exploits34References2
OpenVAS
OpenVAS
added 2024/08/09 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for git (EulerOS-SA-2024-2098)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.5AI score0.25334EPSS
Exploits34References2
OpenVAS
OpenVAS
added 2024/08/09 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for git (EulerOS-SA-2024-2081)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.5AI score0.25334EPSS
Exploits34References2
Rows per page
Query Builder