- Home
- CVEs with nessus.description==The+version+of+Git+for+Windows+installed+on+the+remote+host+is+version+2.7.x+prior+to+2.7.6%2C+2.8.x+prior+to+2.8.6%2C+2.9.x+prior+to+2.9.5%2C+2.10.x+prior+to+2.10.4%2C+2.11.x+prior+to+2.11.13%2C+2.12.x+prior+to+2.12.4%2C+2.13.x+prior+to+2.13.5%2C+or+2.14.x+prior+to+2.14.1.+It+is%2C+therefore%2C+affected+by+a+command+execution+vulnerability+due+to+a+flaw+in+the+handling+of+%27ssh%3A%2F%2F%27+URLs+that+begin+with+a+dash.+A+maliciously+crafted+%27ssh%3A%2F%2F%27+URL+causes+Git+clients+to+run+an+arbitrary+shell+command.+Such+a+URL+could+be+placed+in+the+.gitmodules+file+of+a+malicious+project%2C+and+an+unsuspecting+victim+could+be+tricked+into+running+%27git+clone+--recurse-submodules%27+to+trigger+the+vulnerability
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top