Lucene search
+L

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-22190

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitPython is a python library used to interact with Git repositories. There is an incomplete fix for CVE-2023-40590. On Windows, GitPython uses an untrusted...

7.8CVSS6.9AI score0.00465EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/03/29 10:40 a.m.22 views

Security Bulletin: Vulnerability in GitPython affects IBM Process Mining CVE-2024-22190

Summary There is a vulnerability in GitPython that could allow an remote attacker to execute arbitrary code on the system,. The code is used by IBM Process Mining. This bulletin identifies the security fixes to apply to address the vulnerability. Vulnerability Details CVEID:CVE-2024-22190...

7.8CVSS8.1AI score0.00316EPSS
Exploits0Affected Software1
Wolfi
Wolfi
added 2024/01/11 2:15 a.m.37 views

CVE-2024-22190 vulnerabilities

Vulnerabilities for packages: checkov...

7.8CVSS7.1AI score0.00316EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2024/01/11 2:15 a.m.5 views

agixt (>=1.2.3 <=1.3.155), aicrowd-cli (>=0.1.8 <=0.1.15) +593 more potentially affected by CVE-2024-22190 via gitpython (>=0.3.4 <=3.1.40)

gitpython PYPI version =0.3.4, =1.2.3, =0.1.8, =0.5.0, =1.0.0, =1.0.1, =0.0.1, =2.0.1, =0.10.0, =0.0.1a0, =0.0.1b0, =0.0.3, =6.1.3, =0.0.3, =0.0.5rc2 - apache-liminal-test-spark =0.0.0 and more Source cves: CVE-2024-22190 Source advisory: OSV:PYSEC-2024-4...

7.8CVSS7AI score0.00316EPSS
Exploits0
CVE
CVE
added 2024/01/11 1:23 a.m.300 views

CVE-2024-22190

CVE-2024-22190 (GitPython) affects GitPython, where an incomplete fix for CVE-2023-40590 leaves an untrusted search path risk on Windows when a shell is used to run git or when bash.exe is used to interpret hooks. The issue can allow a malicious git.exe or bash.exe from an untrusted repository to...

7.8CVSS7.5AI score0.00316EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2024/01/11 1:23 a.m.57 views

CVE-2024-22190

GitPython is a python library used to interact with Git repositories. There is an incomplete fix for CVE-2023-40590. On Windows, GitPython uses an untrusted search path if it uses a shell to run git, as well as when it runs bash.exe to interpret hooks. If either of those features are used on...

7.8CVSS7.8AI score0.00316EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/01/11 1:23 a.m.23 views

CVE-2024-22190 Untrusted search path under some conditions on Windows allows arbitrary code execution

GitPython is a python library used to interact with Git repositories. There is an incomplete fix for CVE-2023-40590. On Windows, GitPython uses an untrusted search path if it uses a shell to run git, as well as when it runs bash.exe to interpret hooks. If either of those features are used on...

7.8CVSS7.2AI score0.00316EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/01/11 1:23 a.m.35 views

CVE-2024-22190 Untrusted search path under some conditions on Windows allows arbitrary code execution

GitPython is a python library used to interact with Git repositories. There is an incomplete fix for CVE-2023-40590. On Windows, GitPython uses an untrusted search path if it uses a shell to run git, as well as when it runs bash.exe to interpret hooks. If either of those features are used on...

7.8CVSS7.8AI score0.00316EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2024/01/11 1:23 a.m.34 views

CVE-2024-22190

GitPython is a python library used to interact with Git repositories. There is an incomplete fix for CVE-2023-40590. On Windows, GitPython uses an untrusted search path if it uses a shell to run git, as well as when it runs bash.exe to interpret hooks. If either of those features are used on...

7.8CVSS7.3AI score0.00465EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2024/01/10 3:46 p.m.5 views

agixt (>=1.2.3 <=1.3.155), aicrowd-cli (>=0.1.8 <=0.1.15) +593 more potentially affected by CVE-2024-22190 via gitpython (>=0.3.4 <=3.1.40)

gitpython PYPI version =0.3.4, =1.2.3, =0.1.8, =0.5.0, =1.0.0, =1.0.1, =0.0.1, =2.0.1, =0.10.0, =0.0.1a0, =0.0.1b0, =0.0.3, =6.1.3, =0.0.3, =0.0.5rc2 - apache-liminal-test-spark =0.0.0 and more Source cves: CVE-2024-22190 Source advisory: OSV:GHSA-2MQJ-M65W-JGHX...

7.8CVSS7AI score0.00316EPSS
Exploits0
Rows per page
Query Builder