cvelistv5 - cve-2020-27955

CVE-2020-27955 (GCVE-0-2020-27955)

Vulnerability from cvelistv5

Published

2020-11-05 14:57

Modified

2024-08-04 16:25

Severity ?

CWE

Summary

Git LFS 2.12.0 allows Remote Code Execution.

References

URL

Tags

cve@mitre.org	http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html	Exploit, Third Party Advisory, VDB Entry
cve@mitre.org	http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html	Exploit, Third Party Advisory, VDB Entry
cve@mitre.org	http://seclists.org/fulldisclosure/2020/Nov/1	Exploit, Mailing List, Third Party Advisory
cve@mitre.org	https://exploitbox.io	Exploit, Third Party Advisory
cve@mitre.org	https://github.com/git-lfs/git-lfs/releases	Release Notes, Third Party Advisory
cve@mitre.org	https://legalhackers.com	Third Party Advisory
cve@mitre.org	https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html	Exploit, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html	Exploit, Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html	Exploit, Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/fulldisclosure/2020/Nov/1	Exploit, Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://exploitbox.io	Exploit, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/git-lfs/git-lfs/releases	Release Notes, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://legalhackers.com	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html	Exploit, Third Party Advisory

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T16:25:44.099Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://legalhackers.com"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://exploitbox.io"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/git-lfs/git-lfs/releases"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html"
          },
          {
            "name": "20201105 Git LFS (git-lfs) - Remote Code Execution (RCE) exploit CVE-2020-27955 - Clone to Pwn",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2020/Nov/1"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Git LFS 2.12.0 allows Remote Code Execution."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-09-16T17:06:11",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://legalhackers.com"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://exploitbox.io"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/git-lfs/git-lfs/releases"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html"
        },
        {
          "name": "20201105 Git LFS (git-lfs) - Remote Code Execution (RCE) exploit CVE-2020-27955 - Clone to Pwn",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2020/Nov/1"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2020-27955",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Git LFS 2.12.0 allows Remote Code Execution."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://legalhackers.com",
              "refsource": "MISC",
              "url": "https://legalhackers.com"
            },
            {
              "name": "https://exploitbox.io",
              "refsource": "MISC",
              "url": "https://exploitbox.io"
            },
            {
              "name": "https://github.com/git-lfs/git-lfs/releases",
              "refsource": "MISC",
              "url": "https://github.com/git-lfs/git-lfs/releases"
            },
            {
              "name": "https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html",
              "refsource": "MISC",
              "url": "https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html"
            },
            {
              "name": "20201105 Git LFS (git-lfs) - Remote Code Execution (RCE) exploit CVE-2020-27955 - Clone to Pwn",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2020/Nov/1"
            },
            {
              "name": "http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html"
            },
            {
              "name": "http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2020-27955",
    "datePublished": "2020-11-05T14:57:36",
    "dateReserved": "2020-10-28T00:00:00",
    "dateUpdated": "2024-08-04T16:25:44.099Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2020-27955\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2020-11-05T15:15:36.877\",\"lastModified\":\"2024-11-21T05:22:07.027\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Git LFS 2.12.0 allows Remote Code Execution.\"},{\"lang\":\"es\",\"value\":\"Git LFS versi\u00f3n 2.12.0, permite una ejecuci\u00f3n de c\u00f3digo remota\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":10.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-427\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:git_large_file_storage_project:git_large_file_storage:2.12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"19C9BA26-0722-4950-9261-BB65AE202080\"}]}]}],\"references\":[{\"url\":\"http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://seclists.org/fulldisclosure/2020/Nov/1\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://exploitbox.io\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/git-lfs/git-lfs/releases\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\",\"Third Party Advisory\"]},{\"url\":\"https://legalhackers.com\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://seclists.org/fulldisclosure/2020/Nov/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://exploitbox.io\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/git-lfs/git-lfs/releases\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Third Party Advisory\"]},{\"url\":\"https://legalhackers.com\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]}]}}"
  }
}

gsd-2020-27955

Vulnerability from gsd

Modified

2023-12-13 01:22

Details

Git LFS 2.12.0 allows Remote Code Execution.

Aliases

CVE-2020-27955

Aliases

CVE-2020-27955

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2020-27955",
    "description": "Git LFS 2.12.0 allows Remote Code Execution.",
    "id": "GSD-2020-27955",
    "references": [
      "https://www.suse.com/security/cve/CVE-2020-27955.html",
      "https://packetstormsecurity.com/files/cve/CVE-2020-27955"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2020-27955"
      ],
      "details": "Git LFS 2.12.0 allows Remote Code Execution.",
      "id": "GSD-2020-27955",
      "modified": "2023-12-13T01:22:11.257803Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2020-27955",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Git LFS 2.12.0 allows Remote Code Execution."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://legalhackers.com",
            "refsource": "MISC",
            "url": "https://legalhackers.com"
          },
          {
            "name": "https://exploitbox.io",
            "refsource": "MISC",
            "url": "https://exploitbox.io"
          },
          {
            "name": "https://github.com/git-lfs/git-lfs/releases",
            "refsource": "MISC",
            "url": "https://github.com/git-lfs/git-lfs/releases"
          },
          {
            "name": "https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html",
            "refsource": "MISC",
            "url": "https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html"
          },
          {
            "name": "20201105 Git LFS (git-lfs) - Remote Code Execution (RCE) exploit CVE-2020-27955 - Clone to Pwn",
            "refsource": "FULLDISC",
            "url": "http://seclists.org/fulldisclosure/2020/Nov/1"
          },
          {
            "name": "http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html",
            "refsource": "MISC",
            "url": "http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html"
          },
          {
            "name": "http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html",
            "refsource": "MISC",
            "url": "http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html"
          }
        ]
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "\u003cv2.12.1",
          "affected_versions": "All versions before 2.12.1",
          "cvss_v2": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "cwe_ids": [
            "CWE-1035",
            "CWE-427",
            "CWE-78",
            "CWE-937"
          ],
          "date": "2022-02-11",
          "description": "Git LFS allows Remote Code Execution.",
          "fixed_versions": [
            "v2.12.1"
          ],
          "identifier": "CVE-2020-27955",
          "identifiers": [
            "GHSA-4g4p-42wc-9f3m",
            "CVE-2020-27955"
          ],
          "not_impacted": "All versions starting from 2.12.1",
          "package_slug": "go/github.com/git-lfs/git-lfs",
          "pubdate": "2022-02-11",
          "solution": "Upgrade to version 2.12.1 or above.",
          "title": "Uncontrolled Search Path Element",
          "urls": [
            "https://github.com/git-lfs/git-lfs/security/advisories/GHSA-4g4p-42wc-9f3m",
            "https://nvd.nist.gov/vuln/detail/CVE-2020-27955",
            "https://github.com/git-lfs/git-lfs/releases",
            "https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html",
            "http://seclists.org/fulldisclosure/2020/Nov/1",
            "https://github.com/advisories/GHSA-4g4p-42wc-9f3m"
          ],
          "uuid": "5ba8f6b5-ba4b-4549-9ffc-f8d27f90d3e7",
          "versions": [
            {
              "commit": {
                "sha": "bd4b9bdf7ec2e3b3105ce1ed9c59969e7eb8570a",
                "tags": [
                  "v2.12.1"
                ],
                "timestamp": "20201104210001"
              },
              "number": "v2.12.1"
            }
          ]
        }
      ]
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:git_large_file_storage_project:git_large_file_storage:2.12.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2020-27955"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Git LFS 2.12.0 allows Remote Code Execution."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-427"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html",
              "refsource": "MISC",
              "tags": [
                "Exploit",
                "Third Party Advisory"
              ],
              "url": "https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html"
            },
            {
              "name": "https://legalhackers.com",
              "refsource": "MISC",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://legalhackers.com"
            },
            {
              "name": "https://exploitbox.io",
              "refsource": "MISC",
              "tags": [
                "Exploit",
                "Third Party Advisory"
              ],
              "url": "https://exploitbox.io"
            },
            {
              "name": "https://github.com/git-lfs/git-lfs/releases",
              "refsource": "MISC",
              "tags": [
                "Release Notes",
                "Third Party Advisory"
              ],
              "url": "https://github.com/git-lfs/git-lfs/releases"
            },
            {
              "name": "20201105 Git LFS (git-lfs) - Remote Code Execution (RCE) exploit CVE-2020-27955 - Clone to Pwn",
              "refsource": "FULLDISC",
              "tags": [
                "Exploit",
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "http://seclists.org/fulldisclosure/2020/Nov/1"
            },
            {
              "name": "http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html",
              "refsource": "MISC",
              "tags": [
                "Exploit",
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html"
            },
            {
              "name": "http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html",
              "refsource": "MISC",
              "tags": [
                "Exploit",
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2021-12-16T20:35Z",
      "publishedDate": "2020-11-05T15:15Z"
    }
  }
}

wid-sec-w-2022-1197

Vulnerability from csaf_certbund

Published

2021-05-13 22:00

Modified

2025-11-04 23:00

Summary

git: Schwachstelle ermöglicht Codeausführung

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Git ist eine freie Software zur verteilten Versionsverwaltung von Dateien.

Angriff

Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in git ausnutzen, um beliebigen Programmcode auszuführen.

Betroffene Betriebssysteme

- Linux - MacOS X - UNIX - Windows

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Git ist eine freie Software zur verteilten Versionsverwaltung von Dateien.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in git ausnutzen, um beliebigen Programmcode auszuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- MacOS X\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-1197 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2022-1197.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-1197 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1197"
      },
      {
        "category": "external",
        "summary": "Github Seite des Reseachers vom 2021-05-13",
        "url": "https://github.com/qzyqzynb/CVE-2020-27955"
      },
      {
        "category": "external",
        "summary": "Bamboo Security Advisory",
        "url": "https://confluence.atlassian.com/bamboo/bamboo-security-advisory-2021-04-07-1047552896.html"
      },
      {
        "category": "external",
        "summary": "Exploit auf ExploitBox vom 2025-11-04",
        "url": "https://exploitbox.io/vuln/Git-Git-LFS-RCE-Exploit-CVE-2020-27955.html"
      }
    ],
    "source_lang": "en-US",
    "title": "git: Schwachstelle erm\u00f6glicht Codeausf\u00fchrung",
    "tracking": {
      "current_release_date": "2025-11-04T23:00:00.000+00:00",
      "generator": {
        "date": "2025-11-05T06:28:23.231+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2022-1197",
      "initial_release_date": "2021-05-13T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2021-05-13T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2022-08-25T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates aufgenommen"
        },
        {
          "date": "2025-11-04T23:00:00.000+00:00",
          "number": "3",
          "summary": "Exploit aufgenommen"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c7.2.3",
                "product": {
                  "name": "Atlassian Bamboo \u003c7.2.3",
                  "product_id": "T024384"
                }
              },
              {
                "category": "product_version",
                "name": "7.2.3",
                "product": {
                  "name": "Atlassian Bamboo 7.2.3",
                  "product_id": "T024384-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:atlassian:bamboo:7.2.3"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Bamboo"
          }
        ],
        "category": "vendor",
        "name": "Atlassian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c=2.29.2",
                "product": {
                  "name": "Open Source git \u003c=2.29.2",
                  "product_id": "T019348"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c=2.29.2",
                "product": {
                  "name": "Open Source git \u003c=2.29.2",
                  "product_id": "T019348-fixed"
                }
              }
            ],
            "category": "product_name",
            "name": "git"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-27955",
      "product_status": {
        "known_affected": [
          "T024384"
        ],
        "last_affected": [
          "T019348"
        ]
      },
      "release_date": "2021-05-13T22:00:00.000+00:00",
      "title": "CVE-2020-27955"
    }
  ]
}

ghsa-4g4p-42wc-9f3m

Vulnerability from github

Published

2022-02-11 23:39

Modified

2022-04-20 16:25

Severity ?

9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

Git LFS can execute a Git binary from the current directory

Details

Impact

On Windows, if Git LFS operates on a malicious repository with a git.bat or git.exe file in the current directory, that program would be executed, permitting the attacker to execute arbitrary code. This does not affect Unix systems.

This occurs because on Windows, Go includes (and prefers) the current directory when the name of a command run does not contain a directory separator.

Patches

This version should be patched in v2.12.1, which will be released in coordination with this security advisory.

Workarounds

Other than avoiding untrusted repositories, there is no workaround.

For more information

If you have any questions or comments about this advisory: * Start a discussion in the Git LFS discussion page. * If you cannot open a discussion, please email the core team using their usernames at github.com.

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "Go",
        "name": "github.com/git-lfs/git-lfs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "2.12.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2020-27955"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-427"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2021-05-21T22:10:31Z",
    "nvd_published_at": "2020-11-05T15:15:00Z",
    "severity": "CRITICAL"
  },
  "details": "### Impact\nOn Windows, if Git LFS operates on a malicious repository with a `git.bat` or `git.exe` file in the current directory, that program would be executed, permitting the attacker to execute arbitrary code.  This does not affect Unix systems.\n\nThis occurs because on Windows, Go includes (and prefers) the current directory when the name of a command run does not contain a directory separator.\n\n### Patches\nThis version should be patched in v2.12.1, which will be released in coordination with this security advisory.\n\n### Workarounds\nOther than avoiding untrusted repositories, there is no workaround.\n\n### For more information\nIf you have any questions or comments about this advisory:\n* Start a discussion in [the Git LFS discussion page](https://github.com/git-lfs/git-lfs/discussions).\n* If you cannot open a discussion, please email the core team using their usernames at `github.com`.\n",
  "id": "GHSA-4g4p-42wc-9f3m",
  "modified": "2022-04-20T16:25:04Z",
  "published": "2022-02-11T23:39:18Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://github.com/git-lfs/git-lfs/security/advisories/GHSA-4g4p-42wc-9f3m"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27955"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/git-lfs/git-lfs"
    },
    {
      "type": "WEB",
      "url": "https://github.com/git-lfs/git-lfs/releases"
    },
    {
      "type": "WEB",
      "url": "https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2020/Nov/1"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "Git LFS can execute a Git binary from the current directory"
}

cnvd-2020-70945

Vulnerability from cnvd

Title

Git LFS远程代码执行漏洞

Description

Git LFS是使用Git管理大文件的命令行扩展和规范。 Git LFS 2.12.0存在远程代码执行漏洞。攻击者可利用该漏洞实现远程代码执行。

Severity

高

Patch Name

Git LFS远程代码执行漏洞的补丁

Patch Description

Git LFS是使用Git管理大文件的命令行扩展和规范。 Git LFS 2.12.0存在远程代码执行漏洞。攻击者可利用该漏洞实现远程代码执行。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://github.com/git-lfs/git-lfs/releases

Reference

https://nvd.nist.gov/vuln/detail/CVE-2020-27955

Impacted products

Name
github Git LFS 2.12.0

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-27955",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2020-27955"
    }
  },
  "description": "Git LFS\u662f\u4f7f\u7528Git\u7ba1\u7406\u5927\u6587\u4ef6\u7684\u547d\u4ee4\u884c\u6269\u5c55\u548c\u89c4\u8303\u3002\n\nGit LFS 2.12.0\u5b58\u5728\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5b9e\u73b0\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://github.com/git-lfs/git-lfs/releases",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-70945",
  "openTime": "2020-12-12",
  "patchDescription": "Git LFS\u662f\u4f7f\u7528Git\u7ba1\u7406\u5927\u6587\u4ef6\u7684\u547d\u4ee4\u884c\u6269\u5c55\u548c\u89c4\u8303\u3002\r\n\r\nGit LFS 2.12.0\u5b58\u5728\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5b9e\u73b0\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Git LFS\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "github Git LFS 2.12.0"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-27955",
  "serverity": "\u9ad8",
  "submitTime": "2020-11-06",
  "title": "Git LFS\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e"
}

fkie_cve-2020-27955

Vulnerability from fkie_nvd

Published

2020-11-05 15:15

Modified

2024-11-21 05:22

Severity ?

9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

Git LFS 2.12.0 allows Remote Code Execution.

References

URL	Tags
cve@mitre.org	http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html	Exploit, Third Party Advisory, VDB Entry
cve@mitre.org	http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html	Exploit, Third Party Advisory, VDB Entry
cve@mitre.org	http://seclists.org/fulldisclosure/2020/Nov/1	Exploit, Mailing List, Third Party Advisory
cve@mitre.org	https://exploitbox.io	Exploit, Third Party Advisory
cve@mitre.org	https://github.com/git-lfs/git-lfs/releases	Release Notes, Third Party Advisory
cve@mitre.org	https://legalhackers.com	Third Party Advisory
cve@mitre.org	https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html	Exploit, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html	Exploit, Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html	Exploit, Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/fulldisclosure/2020/Nov/1	Exploit, Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://exploitbox.io	Exploit, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/git-lfs/git-lfs/releases	Release Notes, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://legalhackers.com	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html	Exploit, Third Party Advisory

Impacted products

	Vendor	Product	Version
	git_large_file_storage_project	git_large_file_storage	2.12.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:git_large_file_storage_project:git_large_file_storage:2.12.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "19C9BA26-0722-4950-9261-BB65AE202080",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Git LFS 2.12.0 allows Remote Code Execution."
    },
    {
      "lang": "es",
      "value": "Git LFS versi\u00f3n 2.12.0, permite una ejecuci\u00f3n de c\u00f3digo remota"
    }
  ],
  "id": "CVE-2020-27955",
  "lastModified": "2024-11-21T05:22:07.027",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2020-11-05T15:15:36.877",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://seclists.org/fulldisclosure/2020/Nov/1"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://exploitbox.io"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/git-lfs/git-lfs/releases"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://legalhackers.com"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://packetstormsecurity.com/files/159923/git-lfs-Remote-Code-Execution.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://packetstormsecurity.com/files/164180/Git-git-lfs-Remote-Code-Execution.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://seclists.org/fulldisclosure/2020/Nov/1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://exploitbox.io"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes",
        "Third Party Advisory"
      ],
      "url": "https://github.com/git-lfs/git-lfs/releases"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://legalhackers.com"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://legalhackers.com/advisories/Git-LFS-RCE-Exploit-CVE-2020-27955.html"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-427"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2020-27955 (GCVE-0-2020-27955)

Vulnerability from cvelistv5

gsd-2020-27955

Vulnerability from gsd

wid-sec-w-2022-1197

Vulnerability from csaf_certbund

ghsa-4g4p-42wc-9f3m

Vulnerability from github

Impact

Patches

Workarounds

For more information

cnvd-2020-70945

Vulnerability from cnvd

fkie_cve-2020-27955

Vulnerability from fkie_nvd

Tags

Sightings

Nomenclature