HIGH 8.1
CVE-2024-32004
EN Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, an attacker can prepare a local repository in such a way that, when cloned, will execute arbitrary code during the operation. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid cloning repositories from untrusted sources.
CVSS v3
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Apps suivies affectées
Configurations CPE vulnérables
| Vendor | Produit | Plateforme | Versions | CPE 2.3 URI |
|---|---|---|---|---|
| git-scm | git | Windows | <2.39.4 | cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:* |
| git-scm | git | Windows | ≥2.40.0 <2.40.2 | cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:* |
| git-scm | git | Windows | ≥2.42.0 <2.42.2 | cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:* |
| git-scm | git | Windows | ≥2.43.0 <2.43.4 | cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:* |
| git-scm | git | Windows | — | cpe:2.3:a:git-scm:git:2.41.0:*:*:*:*:*:*:* |
| git-scm | git | Windows | — | cpe:2.3:a:git-scm:git:2.44.0:*:*:*:*:*:*:* |
| git-scm | git | Windows | — | cpe:2.3:a:git-scm:git:2.45.0:*:*:*:*:*:*:* |