Lucene search
+L

5 matches found

OSV
OSV
added 2026/04/15 5:26 p.m.2 views

CVE-2026-32631 Git for Windows: `git clone` from manipulated repositories can leak NTLM hashes to arbitrary servers

Git for Windows is the Windows port of Git. Versions prior to 2.53.0.windows.3 do not have protections that prevent attackers from obtaining a user's NTLM hash. The NTLM hash can be obtained by tricking users into cloning a malicious repository, or checking out a malicious branch, that accesses a...

7.4CVSS6.8AI score0.00316EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/03/10 8:34 p.m.38 views

CVE-2025-66413 Git for Windows leaks NTLM hash when cloning from an attacker-controlled server

Git for Windows is the Windows port of Git. Prior to 2.53.02, it is possible to obtain a user's NTLM hash by tricking them into cloning from a malicious server. Since NTLM hashing is weak, it is possible for the attacker to brute-force the user's account name and password. This vulnerability is...

7.4CVSS0.00268EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.6 views

Git for Windows 信息泄露漏洞

Git for Windows is Git version for Windows operating systems. Versions of Git for Windows prior to 2.53.02 had a vulnerability related to information leakage. This vulnerability stemmed from the possibility of tricking users into cloning malicious servers, allowing attackers to brute-force their...

7.4CVSS5.8AI score0.00268EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2024/02/19 12:0 a.m.13 views

The vulnerability of the PEAP (Protected Extensible Authentication Protocol) client implementation of the Wi-Fi Protected Access Point software WPA Supplicant allows a hacker to intercept the unencrypted user traffic.

The vulnerability of the PEAP Protected Extensible Authentication Protocol client Wi-Fi access control implementation, such as WPA Supplicant, arises due to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to intercept unencrypted user traffic by...

8.3CVSS7.1AI score0.01177EPSS
Exploits0References12Affected Software6
NVD
NVD
added 2023/12/05 12:15 a.m.23 views

CVE-2023-26941

Weak encryption mechanisms in RFID Tags in Yale Conexis L1 v1.1.0 allows attackers to create a cloned tag via physical proximity to the original...

6.5CVSS0.00466EPSS
Exploits4References2
Rows per page
Query Builder