Lucene search
K

23 matches found

Vulnrichment
Vulnrichment
added 2026/06/10 10:13 p.m.7 views

CVE-2026-52726 Dulwich's submodule path traversal in porcelain.submodule_update / porcelain.clone(recurse_submodules=True) yields RCE via attacker-dropped .git/hooks payload

Dulwich is a pure-Python implementation of the Git file formats and protocols. Starting in version 0.23.2 and prior to version 1.2.5, dulwich.porcelain.submoduleupdate, and by extension porcelain.clone..., recursesubmodules=True, materializes attacker-controlled submodule paths from a crafted...

7.5CVSS5.8AI score0.00448EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.17 views

PT-2026-48568

🔴 CVE-2026-52726 is being exploited for RCE: attackers can drop malicious .git/hooks payloads via Dulwich's submodule path traversal flaw. This bypasses standard protections. Patch immediately to prevent full compromise. NerdieNews CyberSecurity Vulnerability https://t.co/tIoG1l3nqd...

7.5CVSS5.4AI score0.00448EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/11 12:0 a.m.5 views

EulerOS 2.0 SP11 : git (EulerOS-SA-2025-2224)

According to the versions of the git packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full...

8CVSS7.5AI score0.02775EPSS
Exploits9References3
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.4 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: git (UTSA-2025-984661)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-984661 advisory. Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals...

8CVSS7.9AI score0.02775EPSS
Exploits9References4
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

EulerOS 2.0 SP10 : git (EulerOS-SA-2025-2065)

According to the versions of the git packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full...

8CVSS8AI score0.02775EPSS
Exploits9References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.2 views

EulerOS 2.0 SP10 : git (EulerOS-SA-2025-2093)

According to the versions of the git packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full...

8CVSS8AI score0.02775EPSS
Exploits9References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.2 views

EulerOS 2.0 SP12 : git (EulerOS-SA-2025-2035)

According to the versions of the git packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full...

8CVSS8AI score0.02775EPSS
Exploits9References2
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-48384

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to...

8CVSS7.8AI score0.02775EPSS
Exploits9References2
RedHat Linux
RedHat Linux
added 2025/07/28 1:45 a.m.33 views

git: Git arbitrary code execution

A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return CR are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read,...

8CVSS5.7AI score0.02775EPSS
Exploits9References8
RedHat Linux
RedHat Linux
added 2025/07/28 1:28 a.m.3 views

git: Git arbitrary code execution

A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return CR are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read,...

8CVSS5.7AI score0.02775EPSS
Exploits9References8
RedHat Linux
RedHat Linux
added 2025/07/28 1:24 a.m.53 views

git: Git arbitrary code execution

A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return CR are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read,...

8CVSS5.7AI score0.02775EPSS
Exploits9References8
RedHat Linux
RedHat Linux
added 2025/07/28 1:20 a.m.4 views

git: Git arbitrary code execution

A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return CR are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read,...

8CVSS5.7AI score0.02775EPSS
Exploits9References8
RedHat Linux
RedHat Linux
added 2025/07/28 1:17 a.m.5 views

git: Git arbitrary code execution

A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return CR are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read,...

8CVSS5.7AI score0.02775EPSS
Exploits9References8
RedHat Linux
RedHat Linux
added 2025/07/24 11:10 p.m.4 views

git: Git arbitrary code execution

A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return CR are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read,...

8CVSS5.7AI score0.02775EPSS
Exploits9References8
OSV
OSV
added 2025/07/11 12:23 p.m.3 views

OESA-2025-1793 git security update

Security Fixes: Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed CRLF. When writing a config...

8CVSS6.9AI score0.02775EPSS
Exploits9References3
OSV
OSV
added 2025/07/11 12:22 p.m.2 views

OESA-2025-1792 git security update

Security Fixes: Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed CRLF. When writing a config...

8CVSS6.9AI score0.02775EPSS
Exploits9References3
SUSE CVE
SUSE CVE
added 2025/07/09 11:22 p.m.3 views

SUSE CVE-2025-48384

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed CRLF. When writing a config entry, values with ...

7.8CVSS6.8AI score0.02775EPSS
Exploits9References12
OSV
OSV
added 2025/07/08 7:15 p.m.7 views

AZL-65057 CVE-2025-48384 affecting package git for versions less than 2.40.4-2

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed CRLF. When writing a config entry, values with ...

8CVSS7.3AI score0.02775EPSS
Exploits9References1
OSV
OSV
added 2025/07/08 7:15 p.m.8 views

AZL-65043 CVE-2025-48384 affecting package git for versions less than 2.45.4-1

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed CRLF. When writing a config entry, values with ...

8CVSS6.8AI score0.02775EPSS
Exploits9References1
OSV
OSV
added 2025/07/08 6:23 p.m.5 views

CVE-2025-48384 Git allows arbitrary code execution through broken config quoting

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed CRLF. When writing a config entry, values with ...

8CVSS7.1AI score0.02775EPSS
Exploits9References7
Rows per page
Query Builder