GitProxy Vulnerability in Branch Creation Process Affects Finos
CVE-2025-54585
Currently unrated
What is CVE-2025-54585?
The vulnerability in GitProxy allows attackers to bypass commit approval when creating new branches in versions 1.19.1 and earlier. This flaw compromises organizations' efforts to maintain proper policy enforcement regarding unapproved changes. The issue arises due to insufficient handling of new branch creation and can be exploited by any user with regular push access, posing a significant risk to development workflows. It mandates an administrator's or designated user's approval for pushes to the child branch, amplifying the impact if unapproved changes are inadvertently merged. Users are encouraged to upgrade to version 1.19.2 to mitigate this vulnerability.