CRITICAL 9.8 Publié le 2016-04-08

CVE-2016-2324

EN Integer overflow in Git before 2.7.4 allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, which triggers a heap-based buffer overflow.

CVSS v3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Apps suivies affectées

Git

winget:Git.Git

1 ouverte

Configurations CPE vulnérables

Vendor	Produit	Plateforme	Versions	CPE 2.3 URI
git-scm	git	Windows	≤2.7.3	cpe:2.3:a:git-scm:git::::::::

Voir sur NVD ↗