Skip to main content

Git For Windows

7 CVEs product

Monthly

CVE-2023-29012 HIGH This Week

Git for Windows is the Windows port of Git. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Microsoft Git For Windows
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2023-29011 HIGH This Week

Git for Windows, the Windows port of Git, ships with an executable called `connect.exe`, which implements a SOCKS5 proxy that can be used to connect e.g. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Microsoft Git For Windows
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2023-25815 LOW PATCH Monitor

In Git for Windows, the Windows port of Git, no localized messages are shipped with the installer. Rated low severity (CVSS 2.2). This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Microsoft Git For Windows Fedora
NVD GitHub
CVSS 3.1
2.2
EPSS
1.1%
CVE-2023-23618 HIGH PATCH This Week

Git for Windows is the Windows port of the revision control system Git. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Information Disclosure Microsoft Git For Windows
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2023-22743 HIGH PATCH This Week

Git for Windows is the Windows port of the revision control system Git. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity.

Information Disclosure Microsoft Git For Windows
NVD GitHub
CVSS 3.1
7.3
EPSS
0.4%
CVE-2022-24767 HIGH PATCH This Week

GitHub: Git for Windows' uninstaller vulnerable to DLL hijacking when run under the SYSTEM user account. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Microsoft Information Disclosure Visual Studio 2017 Visual Studio 2019 Visual Studio 2022 +1
NVD
CVSS 3.1
7.8
EPSS
1.4%
CVE-2016-9274 HIGH POC PATCH This Week

Untrusted search path vulnerability in Git 1.x for Windows allows local users to gain privileges via a Trojan horse git.exe file in the current working directory. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Microsoft Git For Windows
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
EPSS 0% CVSS 7.8
HIGH This Week

Git for Windows is the Windows port of Git. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Microsoft Git For Windows
NVD GitHub
EPSS 0% CVSS 7.8
HIGH This Week

Git for Windows, the Windows port of Git, ships with an executable called `connect.exe`, which implements a SOCKS5 proxy that can be used to connect e.g. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Microsoft Git For Windows
NVD GitHub
EPSS 1% CVSS 2.2
LOW PATCH Monitor

In Git for Windows, the Windows port of Git, no localized messages are shipped with the installer. Rated low severity (CVSS 2.2). This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Microsoft Git For Windows +1
NVD GitHub
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Git for Windows is the Windows port of the revision control system Git. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Information Disclosure Microsoft Git For Windows
NVD GitHub
EPSS 0% CVSS 7.3
HIGH PATCH This Week

Git for Windows is the Windows port of the revision control system Git. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity.

Information Disclosure Microsoft Git For Windows
NVD GitHub
EPSS 1% CVSS 7.8
HIGH PATCH This Week

GitHub: Git for Windows' uninstaller vulnerable to DLL hijacking when run under the SYSTEM user account. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Microsoft Information Disclosure Visual Studio 2017 +3
NVD
EPSS 0% CVSS 7.8
HIGH POC PATCH This Week

Untrusted search path vulnerability in Git 1.x for Windows allows local users to gain privileges via a Trojan horse git.exe file in the current working directory. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Microsoft Git For Windows
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy