CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

97 matches found

NVD•added 2025/07/10 3:15 p.m.•2 views

CVE-2025-27613

Gitk is a Tcl/Tk based Git history browser. Starting with 1.7.0, when a user clones an untrusted repository and runs gitk without additional command arguments, files for which the user has write permission can be created and truncated. The option Support per-file encoding must have been enabled...

3.6CVSS0.00043EPSS

Exploits0References5

OSV•added 2025/07/10 3:15 p.m.•4 views

DEBIAN-CVE-2025-27613

3.6CVSS6.4AI score0.00043EPSS

Exploits0References1

NVD•added 2025/07/10 3:15 p.m.•3 views

CVE-2025-27614

Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script e.g., Bourne shell, Perl, Python, ... supplied by the attacker by invoking...

8.6CVSS0.00028EPSS

Exploits0References3

OSV•added 2025/07/10 3:2 p.m.•2 views

CVE-2025-27614 Gitk allows arbitrary command execution

8.6CVSS8.8AI score0.00028EPSS

Exploits0References5

Vulnrichment•added 2025/07/10 3:2 p.m.•4 views

CVE-2025-27614 Gitk allows arbitrary command execution

8.6CVSS7AI score0.00028EPSS

Exploits0References2

Debian CVE•added 2025/07/10 3:2 p.m.•5 views

CVE-2025-27614

8.6CVSS7.7AI score0.00028EPSS

Exploits0

Cvelist•added 2025/07/10 3:2 p.m.•8 views

CVE-2025-27614 Gitk allows arbitrary command execution

8.6CVSS0.00028EPSS

Exploits0References2

CVE•added 2025/07/10 3:2 p.m.•88 views

CVE-2025-27614

Gitk (a Tcl/Tk based viewer for Git history) contains a local-privilege escalation/command-execution flaw starting with version 2.41.0, where a crafted Git repository can cause a user who has cloned the repo to be tricked into running an attacker-supplied script by invoking gitk filename. The scr...

8.6CVSS5.9AI score0.00028EPSS

Exploits0References3

AlpineLinux•added 2025/07/10 3:2 p.m.•3 views

CVE-2025-27614

8.6CVSS6.1AI score0.00028EPSS

Exploits0

Vulnrichment•added 2025/07/10 2:58 p.m.•5 views

CVE-2025-27613 Gitk can create and truncate files in the user's home directory

3.6CVSS7.2AI score0.00043EPSS

Exploits0References3

Debian CVE•added 2025/07/10 2:58 p.m.•5 views

CVE-2025-27613

3.6CVSS6.4AI score0.00043EPSS

Exploits0

AlpineLinux•added 2025/07/10 2:58 p.m.•4 views

CVE-2025-27613

3.6CVSS6.4AI score0.00043EPSS

Exploits0

OSV•added 2025/07/10 2:58 p.m.•3 views

CVE-2025-27613 Gitk can create and truncate files in the user's home directory

3.6CVSS7.2AI score

Exploits0References3

CVE•added 2025/07/10 2:58 p.m.•92 views

CVE-2025-27613

Gitk (the Tcl/Tk based Git history browser) is affected by CVE-2025-27613. When a user clones an untrusted repository and runs gitk without extra arguments, files that the user can write to may be created and truncated. The vulnerability is triggered by the per-file encoding option in Gitk’s Pref...

3.6CVSS6.2AI score0.00043EPSS

Exploits0References5

Cvelist•added 2025/07/10 2:58 p.m.•7 views

CVE-2025-27613 Gitk can create and truncate files in the user's home directory

3.6CVSS0.00043EPSS

Exploits0References3

SUSE CVE•added 2025/07/09 11:25 p.m.•2 views

SUSE CVE-2025-27613

5.5CVSS7.1AI score0.00043EPSS

Exploits0References11

SUSE CVE•added 2025/07/09 11:25 p.m.•2 views

SUSE CVE-2025-27614

7.8CVSS6.8AI score0.00028EPSS

Exploits0References10

OSV•added 2025/07/09 4:22 p.m.•2 views

USN-7626-2 git regression

USN-7626-1 fixed vulnerabilities in Git. The update introduced a regression in gitk and git-gui. This update reverts the corresponding fixes for CVE-2025-27613 and CVE-2025-46835 pending further investigation. We apologize for the inconvenience. Original advisory details: Avi Halachmi discovered...

8.5CVSS6.2AI score0.00043EPSS

Exploits0References2