Lucene search
K

4 matches found

EUVD
EUVD
added 2026/03/10 6:34 p.m.10 views

EUVD-2026-10791

simple-git, an interface for running git commands in any node.js application, has an issue in versions 3.15.0 through 3.32.2 that allows an attacker to bypass two prior CVE fixes CVE-2022-25860 and CVE-2022-25912 and achieve full remote code execution on the host machine. Version 3.23.0 contains ...

9.8CVSS7.8AI score0.02784EPSS
Exploits3References2
Vulnrichment
Vulnrichment
added 2026/03/10 6:34 p.m.7 views

CVE-2026-28292 simple-git has blockUnsafeOperationsPlugin bypass via case-insensitive protocol.allow config key that enables RCE

simple-git, an interface for running git commands in any node.js application, has an issue in versions 3.15.0 through 3.32.2 that allows an attacker to bypass two prior CVE fixes CVE-2022-25860 and CVE-2022-25912 and achieve full remote code execution on the host machine. Version 3.23.0 contains ...

9.8CVSS7.9AI score0.01296EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.8 views

PT-2026-24396

Name of the Vulnerable Software and Affected Versions simple-git versions 3.15.0 through 3.32.2 Description The simple-git software, a Node.js interface for running git commands, contains an issue in which attackers can bypass previous fixes. This bypass is due to case-insensitive configuration...

9.8CVSS6AI score0.03092EPSS
Exploits22References122
NVD
NVD
added 2026/02/25 10:16 p.m.7 views

CVE-2026-26986

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, railwindowfree dereferences a freed xfAppWindow pointer during HashTableFree cleanup because xfrailwindowcommon calls freeappWindow on title allocation failure without first removing the entry from the...

7.5CVSS0.00476EPSS
Exploits1References8
Rows per page
Query Builder