Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

313 matches found

OSV
OSVadded 2024/01/12 11:15 a.m.6 views

CVE-2023-49568

A denial of service DoS vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. Applications using on...

7.5CVSS7.2AI score
Exploits0References1
OSV
OSVadded 2024/01/12 11:15 a.m.1 views

DEBIAN-CVE-2023-49568

A denial of service DoS vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. Applications using on...

7.5CVSS6.3AI score0.00112EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2024/01/12 11:15 a.m.50 views

CVE-2023-49569

A path traversal vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to create and amend files across the filesystem. In the worse case scenario, remote code execution could be achieved. Applications are only affected if they are using the ChrootO...

9.8CVSS7AI score0.04027EPSS
Exploits0References3
Prion
Prionadded 2024/01/12 11:15 a.m.30 views

Path traversal

A path traversal vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to create and amend files across the filesystem. In the worse case scenario, remote code execution could be achieved. Applications are only affected if they are using the ChrootO...

7.5CVSS7.7AI score0.04027EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2024/01/12 11:15 a.m.0 views

UBUNTU-CVE-2023-49569

A path traversal vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to create and amend files across the filesystem. In the worse case scenario, remote code execution could be achieved. Applications are only affected if they are using the ChrootO...

9.8CVSS7.7AI score0.04027EPSS
Exploits0References4
OSV
OSVadded 2024/01/12 11:15 a.m.0 views

UBUNTU-CVE-2023-49568

A denial of service DoS vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. Applications using on...

7.5CVSS6.8AI score0.00112EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2024/01/12 11:15 a.m.19 views

CVE-2023-49568

A denial of service DoS vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. Applications using on...

7.5CVSS6.8AI score0.00112EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2024/01/12 10:41 a.m.46 views

CVE-2023-49569 Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients

A path traversal vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to create and amend files across the filesystem. In the worse case scenario, remote code execution could be achieved. Applications are only affected if they are using the ChrootO...

9.8CVSS7.4AI score0.04027EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2024/01/12 10:41 a.m.26 views

CVE-2023-49569

A path traversal vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to create and amend files across the filesystem. In the worse case scenario, remote code execution could be achieved. Applications are only affected if they are using the ChrootO...

9.8CVSS7.2AI score0.04027EPSS
Exploits0
Cvelist
Cvelistadded 2024/01/12 10:41 a.m.21 views

CVE-2023-49569 Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients

A path traversal vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to create and amend files across the filesystem. In the worse case scenario, remote code execution could be achieved. Applications are only affected if they are using the ChrootO...

9.8CVSS9.8AI score0.04027EPSS
Exploits0References1
CVE
CVEadded 2024/01/12 10:41 a.m.430 views

CVE-2023-49569

CVE-2023-49569 affects go-git prior to v5.11 and enables a path traversal that could let an attacker create or amend files across the filesystem, potentially leading to remote code execution. Affected apps are those using the ChrootOS filesystem wrapper (default for PlainClone/Open/Clone paths); ...

9.8CVSS9.4AI score0.04027EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/01/12 10:36 a.m.1 views

CVE-2023-49568 Maliciously crafted Git server replies can cause DoS on go-git clients

A denial of service DoS vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. Applications using on...

7.5CVSS6.9AI score0.00112EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/01/12 10:36 a.m.26 views

CVE-2023-49568 Maliciously crafted Git server replies can cause DoS on go-git clients

A denial of service DoS vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. Applications using on...

7.5CVSS7.5AI score0.00112EPSS
Exploits0References1
CVE
CVEadded 2024/01/12 10:36 a.m.412 views

CVE-2023-49568

CVE-2023-49568 affects go-git (Go) and is a DoS due to specially crafted responses from a Git server triggering resource exhaustion in go-git clients. Affected are go-git versions prior to v5.11; in-memory filesystem usage by go-git is not affected. This is a go-git implementation issue and does ...

7.5CVSS7.1AI score0.00112EPSS
Exploits0References1Affected Software1
AlpineLinux
AlpineLinuxadded 2024/01/12 10:36 a.m.38 views

CVE-2023-49568

A denial of service DoS vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. Applications using on...

7.5CVSS7.3AI score0.00112EPSS
Exploits0
CNNVD
CNNVDadded 2024/01/12 12:0 a.m.1 views

go-git input validation error vulnerability

go-git is go-git open source a highly extensible git implementation library written in pure Go. go-git versions prior to v5.11 have an input validation error vulnerability , the vulnerability stems from the existence of a denial of service DoS vulnerability , allowing an attacker to execute a...

7.5CVSS6.8AI score0.00112EPSS
Exploits0References3
CNNVD
CNNVDadded 2024/01/12 12:0 a.m.1 views

go-git path traversal vulnerability

go-git is go-git open source a pure Go written in a highly scalable git implementation of the library . A path traversal vulnerability exists in versions prior to go-git v5.11 that allows an attacker to create and modify files across file systems...

9.8CVSS6.8AI score0.04027EPSS
Exploits0References3
Veracode
Veracodeadded 2024/01/11 6:38 a.m.27 views

Path Traversal

go-git is vulnerable to Path Traversal. The vulnerability is caused due to insufficient file path validation in the Alternates function within dotgit.go. This allows an attacker to create and modify files across the filesystem, possibly resulting in Remote Code Execution RCE...

9.8CVSS7.5AI score0.04027EPSS
Exploits0References2Affected Software2
OSV
OSVadded 2024/01/10 3:37 p.m.33 views

GHSA-449P-3H89-PW88 Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients

Impact A path traversal vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to create and amend files across the filesystem. In the worse case scenario, remote code execution could be achieved. Applications are only affected if they are using the...

9.8CVSS9.2AI score0.04027EPSS
Exploits0References3
Github Security Blog
Github Security Blogadded 2024/01/10 3:37 p.m.57 views

Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients

Impact A path traversal vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to create and amend files across the filesystem. In the worse case scenario, remote code execution could be achieved. Applications are only affected if they are using the...

9.8CVSS8AI score0.04027EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder