Vulnerability in mcp-server-git Affects Multiple Versions
CVE-2025-68144

6.3MEDIUM

Key Information:

Vendor: Modelcontextprotocol
Status: Servers
Vendor: CVE Published:; 17 December 2025

🔔 Create Modelcontextprotocol Vulnerability Alert

What is CVE-2025-68144?

In versions of mcp-server-git released before 2025.12.17, the git_diff and git_checkout functions inadequately handle user-controlled arguments, directly passing them to git CLI commands without proper sanitization. This oversight means that flag-like values, such as --output=/path/to/file for git_diff, could be interpreted as command-line options. This can result in arbitrary file overwrites. The mitigation introduced ensures that arguments starting with '-' are rejected, and validates that the argument resolves to a valid git reference via rev_parse before execution. Users are strongly encouraged to update to version 2025.12.17 upon its release to safeguard their systems.

Affected Version(s)

servers < 2025.12.17

References

https://github.com/modelcontextprotocol/servers/security/...

x_refsource_CONFIRM

CVSS V4

Score:

6.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 17, 2025
Vulnerability Reserved
Dec 15, 2025

JSON