CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to wo...

7.5CVSS8.6AI score0.00522EPSS

Exploits1References2

Rockylinux•added 2025/10/03 7:56 p.m.•3 views

git security update

An update is available for git. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Git is a distributed revision control system with a decentralized architecture. ...

8.8CVSS6.6AI score0.00522EPSS

Exploits1

Rockylinux•added 2025/10/03 7:56 p.m.•4 views

git-lfs security update

An update is available for git-lfs. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Git Large File Storage LFS replaces large files such as audio samples, video...

9.1CVSS7AI score0.00294EPSS

Exploits0

Fedora•added 2025/10/03 12:18 a.m.•4 views

[SECURITY] Fedora 43 Update: uv-0.8.11-4.fc43

An extremely fast Python package installer and resolver, written in Rust. Designed as a drop-in replacement for common pip and pip-tools workflows. Highlights: =E2=80=A2 =E2=9A=96=EF=B8=8F Drop-in replacement for common pip, pip-tools, and virtualenv commands. =E2=80=A2 =E2=9A=A1=EF=B8=8F 10-100x...

8.6CVSS6.6AI score0.00035EPSS

Exploits0

RedhatCVE•added 2025/10/02 8:39 p.m.•16 views

CVE-2025-11148

All versions of the package check-branches are vulnerable to Command Injection check-branches is a command-line tool that is interacted with locally, or via CI, to confirm no conflicts exist in git branches. However, the library follows these conventions which can be abused: 1. It trusts branch...

9.8CVSS7AI score0.00094EPSS

Exploits0References1

SUSE CVE•added 2025/09/30 11:22 p.m.•1 views

SUSE CVE-2025-61659

bash-git-prompt 2.6.1 through 2.7.1 insecurely uses the /tmp/git-index-private$$ file, which has a predictable name...

6.8CVSS7AI score0.00021EPSS

Exploits0References3

OSV•added 2025/09/30 6:32 p.m.•2 views

GHSA-GPX4-37G2-C8PV Argo CD Unauthenticated Remote DoS via malformed Azure DevOps git.push webhook

Summary In the default configuration, webhook.azuredevops.username and webhook.azuredevops.password not set, Argo CD’s /api/webhook endpoint crashes the entire argocd-server process when it receives an Azure DevOps Push event whose JSON array resource.refUpdates is empty. The slice index 0 is...

7.5CVSS7.4AI score0.00047EPSS

Exploits1References5

Github Security Blog•added 2025/09/30 6:32 p.m.•10 views

Argo CD Unauthenticated Remote DoS via malformed Azure DevOps git.push webhook

7.5CVSS7.4AI score0.00047EPSS

Exploits1References5Affected Software2

OSV•added 2025/09/30 12:30 p.m.•6 views

GHSA-9C4G-FP4R-PRRV check-branches is vulnerable to command Injection

All versions of the package check-branches are vulnerable to Command Injection. check-branches is a command-line tool that is interacted with locally, or via CI, to confirm no conflicts exist in git branches. However, the library follows these conventions which can be abused: 1. It trusts branch...

9.8CVSS7.1AI score0.00094EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by