Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

OSV
OSVadded 2025/01/06 4:20 p.m.11 views

GHSA-R9PX-M959-CXF4 go-git clients vulnerable to DoS via maliciously crafted Git server replies

Impact A denial of service DoS vulnerability was discovered in go-git versions prior to v5.13. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. This is a go-g...

7.5CVSS7.4AI score0.00222EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2024/01/13 12:3 a.m.39 views

CVE-2023-49568

A denial of service DoS vulnerability was found in the go library go-git. This issue may allow an attacker to perform denial of service attacks by providing specially crafted responses from a Git server, which can trigger resource exhaustion in go-git clients. Mitigation In cases where a bump to...

7.5CVSS7.3AI score0.00112EPSS
Exploits0References4
Github Security Blog
Github Security Blogadded 2024/01/10 3:37 p.m.56 views

Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients

Impact A path traversal vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to create and amend files across the filesystem. In the worse case scenario, remote code execution could be achieved. Applications are only affected if they are using the...

9.8CVSS8AI score0.04027EPSS
Exploits0References3Affected Software2
OSV
OSVadded 2023/12/27 3:6 p.m.35 views

GHSA-MW99-9CHC-XW7R Maliciously crafted Git server replies can cause DoS on go-git clients

Impact A denial of service DoS vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. Applications...

7.5CVSS7.4AI score0.00112EPSS
Exploits0References3
NVD
NVDadded 2022/08/18 7:15 p.m.9 views

CVE-2022-35976

The GitOps Tools Extension for VSCode relies on kubeconfigs in order to communicate with Kubernetes clusters. A specially crafted kubeconfig leads to arbitrary code execution on behalf of the user running VSCode. Users relying on kubeconfigs that are generated or altered by other processes or use...

9.8CVSS0.00363EPSS
Exploits0References1
Prion
Prionadded 2022/08/18 7:15 p.m.19 views

Code injection

The GitOps Tools Extension for VSCode relies on kubeconfigs in order to communicate with Kubernetes clusters. A specially crafted kubeconfig leads to arbitrary code execution on behalf of the user running VSCode. Users relying on kubeconfigs that are generated or altered by other processes or use...

7.5CVSS9.6AI score0.00363EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder