CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

OSV•added 2024/09/06 7:51 p.m.•3 views

CLSA-2024-1725652305 git: Fix of CVE-2024-32004

CVE-2024-32004: integrating ownership checking to detect dubious local repositories during cloning...

8.1CVSS7.2AI score0.02439EPSS

Exploits0References1

Tenable Nessus•added 2024/06/05 12:0 a.m.•39 views

Amazon Linux AMI : git (ALAS-2024-1939)

The version of git installed on the remote host is prior to 2.38.4-1.81. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2024-1939 advisory. Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositorie...

9CVSS7.5AI score0.82474EPSS

Exploits34References12

Amazon•added 2024/05/30 12:0 a.m.•35 views

Important: git

Issue Overview: Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be fooled into writing files not into the submodule's worktree but into a...

9CVSS7.6AI score0.82474EPSS

Exploits35

OSV•added 2024/05/24 7:18 a.m.•34 views

BIT-GIT-2024-32021 Local Git clone may hardlink arbitrary user-readable files into the new repository's "objects/" directory

Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, when cloning a local source repository that contains symlinks via the filesystem, Git may create hardlinks to arbitrary user-readable files on the same filesystem as the target reposito...

7.1CVSS7.4AI score0.00021EPSS

Exploits1References6

SUSE CVE•added 2024/05/17 2:54 a.m.•1 views

SUSE CVE-2024-32021

3.9CVSS6AI score0.00021EPSS

Exploits1References9

OSV•added 2024/05/14 8:15 p.m.•2 views

AZL-43042 CVE-2024-32021 affecting package git for versions less than 2.45.2-1

7.1CVSS7AI score0.00021EPSS

Exploits1References1

OSV•added 2024/05/14 8:15 p.m.•1 views

ALPINE-CVE-2024-32021

7.1CVSS7.1AI score0.00021EPSS

Exploits1References1

Cvelist•added 2024/05/14 7:15 p.m.•53 views

CVE-2024-32021 Local Git clone may hardlink arbitrary user-readable files into the new repository's "objects/" directory

3.9CVSS7.3AI score0.00021EPSS

Exploits1References4

CVE•added 2024/05/14 7:15 p.m.•331 views

CVE-2024-32021

CVE-2024-32021 affects Git prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. When cloning a local repository that contains symlinks over the filesystem, Git may create hardlinks to arbitrary user-readable files in the destination repo’s objects/ directory. Also, clonin...

7.1CVSS7AI score0.00021EPSS

Exploits1References5Affected Software1

RedHat Linux•added 2023/05/16 8:32 a.m.•2 views

git: exposure of sensitive information to a malicious actor

Git is an open source, scalable, distributed revision control system. Versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4 are subject to exposure of sensitive information to a malicious actor. When performing a local clone where the source and target of the clone...

5.5CVSS7.2AI score0.02579EPSS

Exploits1References4

BDU FSTEC•added 2023/03/28 12:0 a.m.•1 views

The vulnerability of the distributed Git version control system, related to the transfer of private resources to a new domain, allows a hacker to gain access to confidential information.

The vulnerability of the distributed Git version control system relates to the unsafe handling of symbolic links when using local cloning optimization. Git breaks down local clones whose parent directory $GITDIR/objects contains symbolic links. However, the directory itself may still be a symboli...

5.5CVSS6.4AI score0.00138EPSS

Exploits0References11Affected Software8

ATTACKERKB•added 2022/10/19 11:15 a.m.•3 views

CVE-2022-39253

5.5CVSS6.1AI score0.02579EPSS

Exploits1References18Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by