git (SUSE:Linux Enterprise Server 12 SP2-BCL) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Server 12 SP2-BCL package git, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (24)
CVE-2022-41903 — CVSS 9.8 (critical): Git is distributed revision control system. `git log` can display commits in an arbitrary format using its `--format` specifiers. This…
CVE-2018-17456 — CVSS 9.8 (critical): Git before 2.14.5, 2.15.x before 2.15.3, 2.16.x before 2.16.5, 2.17.x before 2.17.2, 2.18.x before 2.18.1, and 2.19.x before 2.19.1 allows…
CVE-2019-1353 — CVSS 9.8 (critical): An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6…
CVE-2022-23521 — CVSS 9.8 (critical): Git is distributed revision control system. gitattributes are a mechanism to allow defining attributes for paths. These attributes can be…
CVE-2020-5260 — CVSS 9.3 (critical): Affected versions of Git have a vulnerability whereby Git can be tricked into sending private credentials to a host controlled by an…
CVE-2019-1350 — CVSS 8.8 (high): A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code…
CVE-2019-1352 — CVSS 8.8 (high): A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code…
CVE-2019-1349 — CVSS 8.8 (high): A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code…
CVE-2019-1354 — CVSS 8.8 (high): A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code…
CVE-2019-1387 — CVSS 8.8 (high): An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6…
CVE-2021-21300 — CVSS 8.0 (high): Git is an open-source distributed revision control system. In affected versions of Git a specially crafted repository that contains…
CVE-2018-11235 — CVSS 7.8 (high): In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4, and 2.17.x before 2.17.1, remote code execution can…
CVE-2022-29187 — CVSS 7.8 (high): Git is a distributed revision control system. Git prior to versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5, is…
CVE-2019-19604 — CVSS 7.8 (high): Arbitrary command execution is possible in Git before 2.20.2, 2.21.x before 2.21.1, 2.22.x before 2.22.2, 2.23.x before 2.23.1, and 2.24.x…
CVE-2019-1351 — CVSS 7.5 (high): A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths, aka 'Git for Visual Studio Tampering…
CVE-2023-25652 — CVSS 7.5 (high): Git is a revision control system. Prior to versions 2.30.9, 2.31.8, 2.32.7, 2.33.8, 2.34.8, 2.35.8, 2.36.6, 2.37.7, 2.38.5, 2.39.3, and…
CVE-2018-11233 — CVSS 7.5 (high): In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4, and 2.17.x before 2.17.1, code to sanity-check…
CVE-2023-29007 — CVSS 7.0 (high): Git is a revision control system. Prior to versions 2.30.9, 2.31.8, 2.32.7, 2.33.8, 2.34.8, 2.35.8, 2.36.6, 2.37.7, 2.38.5, 2.39.3, and…
CVE-2023-23946 — CVSS 6.2 (medium): Git, a revision control system, is vulnerable to path traversal prior to versions 2.39.2, 2.38.4, 2.37.6, 2.36.5, 2.35.7, 2.34.7, 2.33.7…
CVE-2022-24765 — CVSS 6.0 (medium): Git for Windows is a fork of Git containing Windows-specific patches. This vulnerability affects users working on multi-user machines…
CVE-2023-22490 — CVSS 5.5 (medium): Git is a revision control system. Using a specially-crafted repository, Git prior to versions 2.39.2, 2.38.4, 2.37.6, 2.36.5, 2.35.7…
CVE-2020-11008 — CVSS 4.0 (medium): Affected versions of Git have a vulnerability whereby Git can be tricked into sending private credentials to a host controlled by an…
CVE-2023-25815 — CVSS 3.3 (low): In Git for Windows, the Windows port of Git, no localized messages are shipped with the installer. As a consequence, Git is expected not to…
CVE-2019-1348 — CVSS 3.3 (low): An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6. The…