Exposição de git

Development

34

score de exposição

60

sites usam

1

em exploração

4

críticos

CVEs

38 resultados

CVE-2025-48384HIGHGit allows arbitrary code execution through broken config quotingEPSS 2.8%KEV CVE-2021-21300HIGHmalicious repositories can execute remote code while cloningEPSS 88.6%CVE-2022-23521CRITICALgitattributes parsing integer overflow in gitEPSS 56.3%CVE-2023-25652HIGH"git apply --reject" partially-controlled arbitrary file writeEPSS 52.2%CVE-2022-41903CRITICALInteger overflow in `git archive`, `git log --format` leading to RCE in gitEPSS 44.3%CVE-2024-32002CRITICALGit's recursive clones on case-insensitive filesystems that support symlinks are susceptible to Remote Code ExecutionEPSS 25.3%CVE-2020-5260CRITICALmalicious URLs may cause Git to present stored credentials to the wrong serverEPSS 10.0%CVE-2022-41953HIGHGit clone remote code execution vulnerability in git-for-windowsEPSS 6.8%CVE-2023-29007HIGHArbitrary configuration injection via `git submodule deinit`EPSS 6.1%CVE-2022-25648HIGHCommand InjectionEPSS 4.6%CVE-2019-1387—An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6. RecuEPSS 4.4%CVE-2020-11008MEDIUMMalicious URLs can still cause Git to send a stored credential to the wrong serverEPSS 3.9%CVE-2022-39260HIGHGit vulnerable to Remote Code Execution via Heap overflow in `git shell`EPSS 2.9%CVE-2019-1353—An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6. WhenEPSS 2.2%CVE-2021-23632MEDIUMRemote Code Execution (RCE)EPSS 2.2%CVE-2022-39253MEDIUMGit subject to exposure of sensitive information via local clone of symbolic linksEPSS 1.3%CVE-2024-32004HIGHGit vulnerable to Remote Code Execution while cloning special-crafted local repositoriesEPSS 1.3%CVE-2023-23946MEDIUMGit's `git apply` overwriting paths outside the working treeEPSS 1.1%CVE-2023-25815LOWGit looks for localized messages in the wrong placeEPSS 1.1%CVE-2024-52006LOWNewline confusion in credential helpers can lead to credential exfiltration in gitEPSS 1.0%

← anteriorpágina 1 / 2próxima →

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →