Lucene search
K

240 matches found

RedHat Linux
RedHat Linux
added 2022/10/25 9:7 a.m.47 views

Moderate: Red Hat Security Advisory: git-lfs security and bug fix update

An update for git-lfs is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS6.7AI score0.02513EPSS
Exploits5References10
OSV
OSV
added 2022/10/25 7:32 a.m.34 views

RLSA-2022:7129 Moderate: git-lfs security and bug fix update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang.org/x/text: Panic in language.ParseAcceptLanguage while parsing -u- extension...

7.5CVSS7.6AI score0.02513EPSS
Exploits5References10
AlmaLinux
AlmaLinux
added 2022/10/25 12:0 a.m.39 views

Moderate: git-lfs security and bug fix update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang.org/x/text: Panic in language.ParseAcceptLanguage while parsing -u- extension...

7.5CVSS7.7AI score0.02513EPSS
Exploits5References20
OSV
OSV
added 2022/10/25 12:0 a.m.34 views

ALSA-2022:7129 Moderate: git-lfs security and bug fix update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang.org/x/text: Panic in language.ParseAcceptLanguage while parsing -u- extension...

7.5CVSS7.6AI score0.02513EPSS
Exploits5References20
OpenVAS
OpenVAS
added 2022/07/31 12:0 a.m.8 views

Fedora: Security Advisory for git-lfs (FEDORA-2022-5ef0bd9a27)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2022/07/30 1:55 a.m.11 views

[SECURITY] Fedora 36 Update: git-lfs-3.1.2-5.fc36

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server...

3.3AI score
Exploits0
OpenVAS
OpenVAS
added 2022/07/14 12:0 a.m.15 views

Fedora: Security Advisory for git-lfs (FEDORA-2022-ba365d3703)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.3CVSS8.9AI score0.05335EPSS
Exploits4References2
Fedora
Fedora
added 2022/07/13 2:0 a.m.31 views

[SECURITY] Fedora 36 Update: git-lfs-3.1.2-4.fc36

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server...

9.3CVSS3.3AI score0.05335EPSS
Exploits4
Metasploit
Metasploit
added 2021/09/20 5:41 p.m.301 views

Git Remote Code Execution via git-lfs (CVE-2020-27955)

A critical vulnerability CVE-2020-27955 in Git Large File Storage Git LFS, an open source Git extension for versioning large files, allows attackers to achieve remote code execution if the Windows-using victim is tricked into cloning the attacker's malicious repository using a vulnerable Git...

10CVSS9AI score0.82715EPSS
Exploits14
Packet Storm
Packet Storm
added 2021/09/16 12:0 a.m.262 views

Git git-lfs Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Git Remote Code Execution via git-lfs CVE-2020-27955', 'Description' = %q A critical vulnerability CVE-2020-27955 in Git Large File Storage Git...

10CVSS8.4AI score0.82715EPSS
Exploits14
GithubExploit
GithubExploit
added 2021/05/25 3:26 p.m.67 views

Exploit for Uncontrolled Search Path Element in Git_Large_File_Storage_Project Git_Large_File_Storage

Git-lfs Remote Code Execution RCE exploit CVE-2020-27955 .b...

10CVSS9AI score0.82715EPSS
Exploits14
GithubExploit
GithubExploit
added 2021/05/13 10:30 a.m.80 views

Exploit for Uncontrolled Search Path Element in Git_Large_File_Storage_Project Git_Large_File_Storage

Git-lfs Remote Code Execution RCE exploit CVE-2020-27955 .b...

10CVSS9AI score0.82715EPSS
Exploits14
GithubExploit
GithubExploit
added 2021/04/30 9:38 a.m.64 views

Exploit for Uncontrolled Search Path Element in Git_Large_File_Storage_Project Git_Large_File_Storage

Git-lfs Remote Code Execution RCE exploit CVE-2020-27955 .b...

10CVSS9AI score0.82715EPSS
Exploits14
OSV
OSV
added 2021/04/07 11:2 a.m.3 views

OESA-2021-1105 git security update

Git is a free and open source distributed version control system designed to handle everything from small to very large projects with speed and efficiency. Git is easy to learn and has a tiny footprint with lightning fast performance. It outclasses SCM tools like Subversion, CVS, Perforce, and...

8CVSS6.7AI score0.88644EPSS
Exploits5References2
OSV
OSV
added 2021/03/09 6:0 p.m.8 views

UBUNTU-CVE-2021-21300

Git is an open-source distributed revision control system. In affected versions of Git a specially crafted repository that contains symbolic links as well as files using a clean/smudge filter such as Git LFS, may cause just-checked out script to be executed while cloning onto a case-insensitive...

8CVSS7AI score0.88644EPSS
Exploits5References3
GithubExploit
GithubExploit
added 2020/11/24 2:40 a.m.76 views

Exploit for Uncontrolled Search Path Element in Git_Large_File_Storage_Project Git_Large_File_Storage

CVE-2020-27955 Thanks h...

10CVSS8.8AI score0.82715EPSS
Exploits14
CNVD
CNVD
added 2020/11/06 12:0 a.m.3 views

Git LFS Remote Code Execution Vulnerability

Git LFS is a command-line extension and specification for managing large files using Git. A remote code execution vulnerability exists in Git LFS 2.12.0. An attacker can exploit this vulnerability to achieve remote code execution...

10CVSS8.5AI score0.82715EPSS
Exploits14References1
CNVD
CNVD
added 2020/03/16 12:0 a.m.6 views

GitLab Access Control Error Vulnerability (CNVD-2020-19599)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab versions prior ...

6.5CVSS6.8AI score0.00949EPSS
Exploits0References1
OSV
OSV
added 2020/03/13 5:15 p.m.2 views

UBUNTU-CVE-2020-10081

GitLab before 12.8.2 has Incorrect Access Control. It was internally discovered that the LFS import process could potentially be used to incorrectly access LFS objects not owned by the user...

6.5CVSS6.6AI score0.00949EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2017/12/21 6:29 a.m.4 views

CVE-2017-17831

GitHub Git LFS before 2.1.1 allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, located on a "url =" line in a .lfsconfig file within a repository...

8.8CVSS6.1AI score0.03677EPSS
Exploits1References6
Rows per page
Query Builder