VDB
GCVE-110-MAGEIA-2023-1
GCVE-110-MAGEIA-2023-1
Advisory Published
Remote Code Execution (RCE) due to improper user input validation, which
makes it possible to inject a maliciously crafted remote URL into the
clone command. Exploiting this vulnerability is possible because the
library makes external calls to git without sufficient sanitization of
input arguments. This is only relevant when enabling the ext transport
protocol (CVE-2022-24439)
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | nx | 0 (affected), 3.5.99.26-1.1.mga8 (unaffected) | — |
| Mageia | python-gitpython | 0 (affected), 3.1.30-1.mga8 (unaffected), 3.1.30-1.mga8 (unaffected), 0 (affected) | — |
| Mageia | x2goserver | 0 (affected), 4.1.0.3-1.1.mga8 (unaffected) | — |
Aliases
References
Browse GCVE Records
73,443 records in the GCVE database · Updated July 18, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.