VDB
WID-SEC-W-2025-1485
WID-SEC-W-2025-1485
PUBLISHED
CVSS 6.900000095367432 MEDIUM
Microsoft Visual Studio ist eine integrierte Entwicklungsumgebung für Hochsprachen. Visual Studio Code ist ein Quelltext-Editor von Microsoft. Git ist eine freie Software zur verteilten Versionsverwaltung von Dateien.
Risk Scores
CVSS 4.0
6.900000095367432
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft Visual Studio 2019 version 16.11 (includes 16.0-16.10) | ||
| Open Source Gitea 1.24.3 | ||
| Fedora Linux | ||
| Open Source git 2.45.4 | ||
| Open Source git 2.44.4 | ||
| Open Source git <2.44.4 | ||
| Microsoft Visual Studio 2015 Update 3 | ||
| Microsoft Visual Studio 2017 version 15.9 (includes 15.0-15.8) | ||
| Microsoft Visual Studio 2022 version 17.12 | ||
| Gentoo Linux | ||
| Microsoft Visual Studio 2022 version 17.14 | ||
| Microsoft Visual Studio 2022 version 17.8 | ||
| Open Source git 2.43.7 | ||
| Open Source Gitea <1.24.3 | ||
| Amazon Linux 2 | ||
| Open Source git <2.46.4 | ||
| Open Source git <2.43.7 | ||
| Microsoft Visual Studio Code Python extension for Visual Studio Code | ||
| Microsoft Visual Studio 2022 version 17.10 | ||
| Open Source git <2.45.4 |
Exploit Intelligence
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1485.json (circl)
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1485 (circl)
- https://msrc.microsoft.com/update-guide/ (circl)
- https://seclists.org/oss-sec/2025/q3/13 (circl)
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-b5fe483928 (circl)
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-0b7e43532e (circl)
- https://security.gentoo.org/glsa/202507-09 (circl)
- https://ubuntu.com/security/notices/USN-7626-1 (circl)
- https://ubuntu.com/security/notices/USN-7626-2 (circl)
- https://ubuntu.com/security/notices/USN-7626-3 (circl)
…and 36 more exploits
Timeline
- Jul 8, 2025 CVE Published
- Sep 17, 2025 CVE Updated
- Apr 14, 2026 Distribution Patch
- Apr 14, 2026 Distribution Patch
- Apr 14, 2026 Distribution Patch
- Apr 14, 2026 Distribution Patch
- Apr 14, 2026 Distribution Patch
- Apr 14, 2026 Distribution Patch
- Apr 14, 2026 Distribution Patch
- Apr 14, 2026 Distribution Patch
- Apr 14, 2026 Distribution Patch
- Apr 14, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1485.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1485 advisory
- https://msrc.microsoft.com/update-guide/ url
- https://seclists.org/oss-sec/2025/q3/13 url
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-b5fe483928 url
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-0b7e43532e url
- https://security.gentoo.org/glsa/202507-09 url
- https://ubuntu.com/security/notices/USN-7626-1 url
- https://ubuntu.com/security/notices/USN-7626-2 url
- https://ubuntu.com/security/notices/USN-7626-3 url
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PEXXCKK2SHLP467JELDLXOF647W7254W/ url
- https://securitylabs.datadoghq.com/articles/git-arbitrary-file-write/ url
- https://docs.cpanel.net/changelogs/130-change-log/ url
- https://blog.gitea.com/release-of-1.24.3 url
- https://linux.oracle.com/errata/ELSA-2025-11462.html url
- https://access.redhat.com/errata/RHSA-2025:11462 url
- https://linux.oracle.com/errata/ELSA-2025-11534.html url
- https://access.redhat.com/errata/RHSA-2025:11533 url
- https://access.redhat.com/errata/RHSA-2025:11534 url
- https://linux.oracle.com/errata/ELSA-2025-11533.html url
…and 25 more