Git Security Vulnerabilities and Issues — Git CVE List

Git ProjectGit

3 matches found

CVE•added 2016/04/13 3:0 p.m.•134 views

CVE-2015-7545

The CVE-2015-7545 issue affects Git’s remote helpers (notably git-remote-ext) and other remote helpers. Git prior to 2.3.10, 2.4.x prior to 2.4.10, 2.5.x prior to 2.5.4, and 2.6.x prior to 2.6.1 do not properly restrict allowed protocols, which could let remote attackers execute arbitrary code vi...

9.8CVSS9.5AI score0.31254EPSS

CVE•added 2022/03/17 11:20 a.m.•124 views

CVE-2021-23632

CVE-2021-23632 affects all versions of the npm package git. The root cause is missing sanitization in the Git.git method, allowing input to execute OS commands rather than just git commands, enabling Remote Code Execution. The provided PoC demonstrates injecting commands via repo.git(input) to ru...

9.8CVSS8.3AI score0.034EPSS

CVE•added 2015/12/11 11:0 a.m.•42 views

CVE-2015-7082

CVE-2015-7082 refers to multiple unspecified vulnerabilities in Git prior to 2.5.4, as used by Apple Xcode prior to 7.2. The connected document details a concrete root cause: a flaw in the git-remote-ext component that can be triggered by handling a specially crafted URL, enabling a remote attack...

10CVSS6.5AI score0.00605EPSS