Vulnerabilidades em git
23 resultadosCVE-2021-21300HIGHmalicious repositories can execute remote code while cloningEPSS 88.6%CVE-2022-23521CRITICALgitattributes parsing integer overflow in gitEPSS 56.3%CVE-2023-25652HIGH"git apply --reject" partially-controlled arbitrary file writeEPSS 52.2%CVE-2022-41903CRITICALInteger overflow in `git archive`, `git log --format` leading to RCE in gitEPSS 44.3%CVE-2024-32002CRITICALGit's recursive clones on case-insensitive filesystems that support symlinks are susceptible to Remote Code ExecutionEPSS 25.3%CVE-2020-5260CRITICALmalicious URLs may cause Git to present stored credentials to the wrong serverEPSS 10.0%CVE-2023-29007HIGHArbitrary configuration injection via `git submodule deinit`EPSS 6.1%CVE-2020-11008MEDIUMMalicious URLs can still cause Git to send a stored credential to the wrong serverEPSS 3.9%CVE-2022-39260HIGHGit vulnerable to Remote Code Execution via Heap overflow in `git shell`EPSS 2.9%CVE-2025-48384HIGHGit allows arbitrary code execution through broken config quotingEPSS 2.8%KEVCVE-2022-39253MEDIUMGit subject to exposure of sensitive information via local clone of symbolic linksEPSS 1.3%CVE-2024-32004HIGHGit vulnerable to Remote Code Execution while cloning special-crafted local repositoriesEPSS 1.3%CVE-2023-23946MEDIUMGit's `git apply` overwriting paths outside the working treeEPSS 1.1%CVE-2024-52006LOWNewline confusion in credential helpers can lead to credential exfiltration in gitEPSS 1.0%CVE-2024-32021LOWLocal Git clone may hardlink arbitrary user-readable files into the new repository's "objects/" directoryEPSS 1.0%CVE-2024-32465HIGHGit's protections for cloning untrusted repositories can be bypassedEPSS 0.9%CVE-2025-48385HIGHGit alllows arbitrary file writes via bundle-uri parameter injectionEPSS 0.8%CVE-2023-22490MEDIUMGit vulnerable to local clone-based data exfiltration with non-local transportsEPSS 0.7%CVE-2024-50349LOWGit does not sanitize URLs when asking for credentials interactivelyEPSS 0.6%CVE-2024-32020LOWCloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at willEPSS 0.5%