Git Large File Storage Project Git Large File Storage — known CVE vulnerabilities
Every CVE whose affected-product data names Git Large File Storage Project Git Large File Storage, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2022-24826 — CVSS 9.8 (critical): On Windows, if Git LFS operates on a malicious repository with a `..exe` file as well as a file named `git.exe`, and `git.exe` is not found…
CVE-2017-17831 — CVSS 8.8 (high): GitHub Git LFS before 2.1.1 allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the…
CVE-2021-21237 — CVSS 7.2 (high): Git LFS is a command line extension for managing large files with Git. On Windows, if Git LFS operates on a malicious repository with a…