Git Latest High Vulnerabilities

Source Code Management Tool Vulnerability in Git Software

CVE-2024-52005

GitGit7.5HIGH

Git LFS Credential Vulnerability Affecting Git Extensions from GitHub

CVE-2024-53263

Git-lfsGit-lfs📈8.5HIGH

Git Vulnerability Affects Cloning of Local Repositories

CVE-2024-32465

GitGit7.4HIGH

Arbitrary Code Execution Vulnerability in Git Repositories

CVE-2024-32004

GitGit8.2HIGH

Git vulnerability in submodules can be exploited to execute malicious code

CVE-2024-32002

GitGit📈👾🟡EPSS 70%📰9.1CRITICAL

Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients

CVE-2023-49569

go-gitgo-git9.8CRITICAL

Maliciously crafted Git server replies can cause DoS on go-git clients

CVE-2023-49568

go-gitgo-git7.5HIGH

Regular Expression Denial of Service in git-urls by 6en6ar

CVE-2023-46402

Git-urls ProjectGit-urls7.5HIGH

Command Injection Vulnerability in Git Commit Info by JPeer264

CVE-2023-26134

Git-commit-info P...Git-commit-info9.8CRITICAL

Regular Expression Denial of Service in git-url-parse for Rust

CVE-2023-33290

Git-url-parse Pro...Git-url-parse7.5HIGH

Git CMD erroneously executes `doskey.exe` in the current directory, if it exists

CVE-2023-29012

Git-for-windowsGit7.3HIGH

Arbitrary configuration injection via `git submodule deinit`

CVE-2023-29007

GitGit👾🟡7HIGH

Git for Windows's config file of `connect.exe` is susceptible to malicious placing

CVE-2023-29011

Git-for-windowsGit7.6HIGH

"git apply --reject" partially-controlled arbitrary file write

CVE-2023-25652

GitGit7.5HIGH

Git for Windows' installer is susceptible to DLL side loading attacks

CVE-2023-22743

Git-for-windowsGit7.3HIGH

gitk can inadvertently call executables in the worktree

CVE-2023-23618

Git-for-windowsGit8.6HIGH

Remote Code Execution Vulnerability in Simple-Git by SteveUKX

CVE-2022-25860

Simple-git ProjectSimple-gitEPSS 32%9.8CRITICAL

gitattributes parsing integer overflow in git

CVE-2022-23521

GitGit9.8CRITICAL

Integer overflow in `git archive`, `git log --format` leading to RCE in git

CVE-2022-41903

GitGit👾🟡EPSS 16%9.8CRITICAL

Git clone remote code execution vulnerability in git-for-windows

CVE-2022-41953

Git-for-windowsGit8.6HIGH

Remote Code Execution Vulnerability in ruby-git by Ruby

CVE-2022-46648

Ruby-gitRuby-git8HIGH

Remote Code Execution Vulnerability in ruby-git by Ruby

CVE-2022-47318

Ruby-gitRuby-git8HIGH

Remote Code Execution (RCE)

CVE-2022-25912

Simple-git ProjectSimple-gitEPSS 38%9.8CRITICAL

Git vulnerable to Remote Code Execution via Heap overflow in `git shell`

CVE-2022-39260

GitGit8.5HIGH

Git for Windows' installer can be tricked into executing an untrusted binary

CVE-2022-31012

Git-for-windowsGit8.2HIGH

Vulnerability Published:

Sort By:

15 January 2025

Source Code Management Tool Vulnerability in Git Software

14 January 2025

Git LFS Credential Vulnerability Affecting Git Extensions from GitHub

14 May 2024

Git Vulnerability Affects Cloning of Local Repositories

Arbitrary Code Execution Vulnerability in Git Repositories

Git vulnerability in submodules can be exploited to execute malicious code

12 January 2024

Maliciously crafted Git server replies can lead to path traversal and RCE on go-git clients

Maliciously crafted Git server replies can cause DoS on go-git clients

18 November 2023

Regular Expression Denial of Service in git-urls by 6en6ar

28 June 2023

Command Injection Vulnerability in Git Commit Info by JPeer264

12 June 2023

Regular Expression Denial of Service in git-url-parse for Rust

25 April 2023

Git CMD erroneously executes `doskey.exe` in the current directory, if it exists

Arbitrary configuration injection via `git submodule deinit`

Git for Windows's config file of `connect.exe` is susceptible to malicious placing

"git apply --reject" partially-controlled arbitrary file write

14 February 2023

Git for Windows' installer is susceptible to DLL side loading attacks

gitk can inadvertently call executables in the worktree

26 January 2023

Remote Code Execution Vulnerability in Simple-Git by SteveUKX

17 January 2023

gitattributes parsing integer overflow in git

Integer overflow in `git archive`, `git log --format` leading to RCE in git

Git clone remote code execution vulnerability in git-for-windows

Remote Code Execution Vulnerability in ruby-git by Ruby

Remote Code Execution Vulnerability in ruby-git by Ruby

6 December 2022

Remote Code Execution (RCE)

19 October 2022

Git vulnerable to Remote Code Execution via Heap overflow in `git shell`

12 July 2022

Git for Windows' installer can be tricked into executing an untrusted binary