Git-Scm Git vulnerabilities
41 known vulnerabilities affecting git-scm/git.
Total CVEs
41
CISA KEV
1
actively exploited
Public exploits
8
Exploited in wild
1
Severity breakdown
CRITICAL8HIGH25MEDIUM6LOW2
Vulnerabilities
Page 2 of 3
CVE-2010-3906P4MEDIUMCVSS 4.3PoC≤ 1.7.3.3v0.01+6 more2010-12-17
CVE-2010-3906 [MEDIUM] CWE-79 CVE-2010-3906: Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier allows remote attackers to in
Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.
nvd
CVE-2022-41953P3HIGHCVSS 7.8fixed in 2.39.12023-01-17
CVE-2022-41953 [HIGH] CWE-426 CVE-2022-41953: Git GUI is a convenient graphical tool that comes with Git for Windows. Its target audience is users
Git GUI is a convenient graphical tool that comes with Git for Windows. Its target audience is users who are uncomfortable with using Git on the command-line. Git GUI has a function to clone repositories. Immediately after the local clone is available, Git GUI will automatically post-process it, among other things running a spell checker called `aspel
nvd
CVE-2019-19604P3HIGHCVSS 7.8fixed in 2.20.0≥ 2.21.0, < 2.21.1+3 more2019-12-11
CVE-2019-19604 [HIGH] CWE-78 CVE-2019-19604: Arbitrary command execution is possible in Git before 2.20.2, 2.21.x before 2.21.1, 2.22.x before 2.
Arbitrary command execution is possible in Git before 2.20.2, 2.21.x before 2.21.1, 2.22.x before 2.22.2, 2.23.x before 2.23.1, and 2.24.x before 2.24.1 because a "git submodule update" operation can run commands found in the .gitmodules file of a malicious repository.
nvd
CVE-2022-29187P3HIGHCVSS 7.8≥ 2.30.3, < 2.30.5≥ 2.31.2, < 2.31.4+6 more2022-07-12
CVE-2022-29187 [HIGH] CVE-2022-29187: Git is a distributed revision control system. Git prior to versions 2.37.1, 2.36.2, 2.35.4, 2.34.4,
Git is a distributed revision control system. Git prior to versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5, is vulnerable to privilege escalation in all platforms. An unsuspecting user could still be affected by the issue reported in CVE-2022-24765, for example when navigating as root into a shared tmp directory that is owned by the
nvd
CVE-2021-40330P3HIGHCVSS 7.5fixed in 2.30.12021-08-31
CVE-2021-40330 [HIGH] CVE-2021-40330: git_connect_git in connect.c in Git before 2.30.1 allows a repository path to contain a newline char
git_connect_git in connect.c in Git before 2.30.1 allows a repository path to contain a newline character, which may result in unexpected cross-protocol requests, as demonstrated by the git://localhost:1234/%0d%0a%0d%0aGET%20/%20HTTP/1.1 substring.
nvd
CVE-2024-32004P3HIGHCVSS 7.8fixed in 2.39.4≥ 2.40.0, < 2.40.2+5 more2024-05-14
CVE-2024-32004 [HIGH] CWE-114 CVE-2024-32004: Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2,
Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, an attacker can prepare a local repository in such a way that, when cloned, will execute arbitrary code during the operation. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround
nvd
CVE-2022-24765P3HIGHCVSS 7.8fixed in 2.35.22022-04-12
CVE-2022-24765 [HIGH] CWE-427 CVE-2022-24765: Git for Windows is a fork of Git containing Windows-specific patches. This vulnerability affects use
Git for Windows is a fork of Git containing Windows-specific patches. This vulnerability affects users working on multi-user machines, where untrusted parties have write access to the same hard disk. Those untrusted parties could create the folder `C:\.git`, which would be picked up by Git operations run supposedly outside a repository while searching
nvd
CVE-2014-9938P3HIGHCVSS 8.8fixed in 1.9.32017-03-20
CVE-2014-9938 [HIGH] CWE-116 CVE-2014-9938: contrib/completion/git-prompt.sh in Git before 1.9.3 does not sanitize branch names in the PS1 varia
contrib/completion/git-prompt.sh in Git before 1.9.3 does not sanitize branch names in the PS1 variable, allowing a malicious repository to cause code execution.
nvd
CVE-2023-23946P3HIGHCVSS 7.5fixed in 2.30.8≥ 2.31.0, < 2.31.7+8 more2023-02-14
CVE-2023-23946 [HIGH] CWE-22 CVE-2023-23946: Git, a revision control system, is vulnerable to path traversal prior to versions 2.39.2, 2.38.4, 2.
Git, a revision control system, is vulnerable to path traversal prior to versions 2.39.2, 2.38.4, 2.37.6, 2.36.5, 2.35.7, 2.34.7, 2.33.7, 2.32.6, 2.31.7, and 2.30.8. By feeding a crafted input to `git apply`, a path outside the working tree can be overwritten as the user who is running `git apply`. A fix has been prepared and will appear in v2.39.2, v2
nvd
CVE-2018-11233P3HIGHCVSS 7.5≤ 2.13.6≥ 2.14.0, ≤ 2.14.3+3 more2018-05-30
CVE-2018-11233 [HIGH] CWE-125 CVE-2018-11233: In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4, and 2.17.x b
In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4, and 2.17.x before 2.17.1, code to sanity-check pathnames on NTFS can result in reading out-of-bounds memory.
nvd
CVE-2022-24975P3HIGHCVSS 7.5≤ 2.35.12022-02-11
CVE-2022-24975 [HIGH] CWE-668 CVE-2022-24975: The --mirror documentation for Git through 2.35.1 does not mention the availability of deleted conte
The --mirror documentation for Git through 2.35.1 does not mention the availability of deleted content, aka the "GitBleed" issue. This could present a security risk if information-disclosure auditing processes rely on a clone operation without the --mirror option. Note: This has been disputed by multiple 3rd parties who believe this is an intended fea
nvd
CVE-2010-2542P3HIGHCVSS 7.5fixed in 1.7.2.12010-08-11
CVE-2010-2542 [HIGH] CWE-787 CVE-2010-2542: Stack-based buffer overflow in the is_git_directory function in setup.c in Git before 1.7.2.1 allows
Stack-based buffer overflow in the is_git_directory function in setup.c in Git before 1.7.2.1 allows local users to gain privileges via a long gitdir: field in a .git file in a working copy.
nvd
CVE-2024-32465P3HIGHCVSS 7.8fixed in 2.39.4≥ 2.40.0, < 2.40.2+5 more2024-05-14
CVE-2024-32465 [HIGH] CVE-2024-32465: Git is a revision control system. The Git project recommends to avoid working in untrusted repositor
Git is a revision control system. The Git project recommends to avoid working in untrusted repositories, and instead to clone it first with `git clone --no-local` to obtain a clean copy. Git has specific protections to make that a safe operation even with an untrusted source repository, but vulnerabilities allow those protections to be bypassed. In the contex
nvd
CVE-2024-32021P3HIGHCVSS 7.1fixed in 2.39.4≥ 2.40.0, < 2.40.2+5 more2024-05-14
CVE-2024-32021 [HIGH] CVE-2024-32021: Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2,
Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, when cloning a local source repository that contains symlinks via the filesystem, Git may create hardlinks to arbitrary user-readable files on the same filesystem as the target repository in the `objects/` directory. Cloning a local repository over t
nvd
CVE-2023-22490P4MEDIUMCVSS 5.5fixed in 2.30.8≥ 2.31.0, < 2.31.7+8 more2023-02-14
CVE-2023-22490 [MEDIUM] CVE-2023-22490: Git is a revision control system. Using a specially-crafted repository, Git prior to versions 2.39.2
Git is a revision control system. Using a specially-crafted repository, Git prior to versions 2.39.2, 2.38.4, 2.37.6, 2.36.5, 2.35.7, 2.34.7, 2.33.7, 2.32.6, 2.31.7, and 2.30.8 can be tricked into using its local clone optimization even when using a non-local transport. Though Git will abort local clones whose source `$GIT_DIR/objects` directory contains sy
nvd
CVE-2022-39253P4MEDIUMCVSS 5.5fixed in 2.30.6≥ 2.31.0, < 2.31.5+7 more2022-10-19
CVE-2022-39253 [MEDIUM] CWE-200 CVE-2022-39253: Git is an open source, scalable, distributed revision control system. Versions prior to 2.30.6, 2.31
Git is an open source, scalable, distributed revision control system. Versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5, 2.35.5, 2.36.3, and 2.37.4 are subject to exposure of sensitive information to a malicious actor. When performing a local clone (where the source and target of the clone are on the same volume), Git copies the contents of t
nvd
CVE-2018-1000021P4MEDIUMCVSS 5.0≤ 2.15.12018-02-09
CVE-2018-1000021 [MEDIUM] CWE-20 CVE-2018-1000021: GIT version 2.15.1 and earlier contains a Input Validation Error vulnerability in Client that can re
GIT version 2.15.1 and earlier contains a Input Validation Error vulnerability in Client that can result in problems including messing up terminal configuration to RCE. This attack appear to be exploitable via The user must interact with a malicious git server, (or have their traffic modified in a MITM attack).
nvd
CVE-2013-0308P4MEDIUMCVSS 4.3≤ 1.8.1.32013-03-08
CVE-2013-0308 [MEDIUM] CWE-20 CVE-2013-0308: The imap-send command in GIT before 1.8.1.4 does not verify that the server hostname matches a domai
The imap-send command in GIT before 1.8.1.4 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.
nvd
CVE-2017-15298P4MEDIUMCVSS 5.5≤ 2.14.22017-10-14
CVE-2017-15298 [MEDIUM] CWE-400 CVE-2017-15298: Git through 2.14.2 mishandles layers of tree objects, which allows remote attackers to cause a denia
Git through 2.14.2 mishandles layers of tree objects, which allows remote attackers to cause a denial of service (memory consumption) via a crafted repository, aka a Git bomb. This can also have an impact of disk consumption; however, an affected process typically would not survive its attempt to build the data structure in memory before writing to
nvd
CVE-2019-1348P4LOWCVSS 3.3≥ 2.14.0, < 2.14.6≥ 2.15.0, < 2.15.4+9 more2020-01-24
CVE-2019-1348 [LOW] CVE-2019-1348: An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.1
An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6. The --export-marks option of git fast-import is exposed also via the in-stream command feature export-marks=... and it allows overwriting arbitrary paths.
nvd