Gitpython Security Vulnerabilities and Issues — Gitpython CVE List

Lucene search

Gitpython ProjectGitpython

3 matches found

CVE•added 2023/08/11 7:15 a.m.•254 views

CVE-2023-40267

GitPython before 3.1.32 does not block insecure non-multi options in clone and clone_from. NOTE: this issue exists because of an incomplete fix for CVE-2022-24439.

9.8CVSS9.4AI score0.69549EPSS

CVE•added 2023/08/30 10:15 p.m.•106 views

CVE-2023-41040

GitPython is a python library used to interact with Git repositories. In order to resolve some git references, GitPython reads files from the .git directory, in some places the name of the file being read is provided by the user, GitPython doesn't check if this file is located outside the .git dire...

6.5CVSS5.3AI score0.00203EPSS

CVE•added 2023/08/28 6:15 p.m.•53 views

CVE-2023-40590

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git executable...

7.8CVSS7.4AI score0.00325EPSS