VDB
BIT-git-2024-32020
BIT-git-2024-32020
PUBLISHED
CVSS 3.299999952316284 LOW
Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at will
Risk Scores
CVSS v3.1
3.299999952316284
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | git | 0, 2.40.0, 2.41.0 |
Timeline
- May 24, 2024 CVE Published
- Jan 7, 2026 CVE Updated
References
- https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d url
- https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703 url
- https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj url
- http://www.openwall.com/lists/oss-security/2024/05/14/2 url
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S4CK4IYTXEOBZTEM5K3T6LWOIZ3S44AR/ url
- https://nvd.nist.gov/vuln/detail/CVE-2024-32020 url