Every CVE whose affected-product data names Go-git Project Go-git, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2023-49569 — CVSS 9.8 (critical): A path traversal vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to create and amend…
CVE-2025-21613 — CVSS 9.8 (critical): go-git is a highly extensible git implementation library written in pure Go. An argument injection vulnerability was discovered in go-git…
CVE-2026-45570 — CVSS 9.6 (critical): go-git is an extensible git implementation library written in pure Go. Prior to 5.19.1 and 6.0.0-alpha.4, go-git's SSH transport constructs…
CVE-2026-45022 — CVSS 7.5 (high): go-git is an extensible git implementation library written in pure Go. Prior to 5.19.0 and 6.0.0-alpha.3, go-git may parse malformed Git…
CVE-2025-21614 — CVSS 7.5 (high): go-git is a highly extensible git implementation library written in pure Go. A denial of service (DoS) vulnerability was discovered in…
CVE-2023-49568 — CVSS 7.5 (high): A denial of service (DoS) vulnerability was discovered in go-git versions prior to v5.11. This vulnerability allows an attacker to perform…
CVE-2026-45571 — CVSS 5.4 (medium): go-git is an extensible git implementation library written in pure Go. Prior to 5.19.1 and 6.0.0-alpha.4, a path validation issue in go-git…
CVE-2026-34165 — CVSS 5.0 (medium): go-git is an extensible git implementation library written in pure Go. From version 5.0.0 to before version 5.17.1, a vulnerability has…
CVE-2026-41506 — CVSS 4.7 (medium): go-git is an extensible git implementation library written in pure Go. Prior to versions 5.18.0 and 6.0.0-alpha.2, go-git may leak HTTP…
CVE-2026-25934 — CVSS 4.3 (medium): go-git is a highly extensible git implementation library written in pure Go. Prior to 5.16.5, a vulnerability was discovered in go-git…
CVE-2026-33762 — CVSS 2.8 (low): go-git is an extensible git implementation library written in pure Go. Prior to version 5.17.1, go-git’s index decoder for format version…