KLA20236
Multiple vulnerabilities in Git for Windows

Updated: 11/15/2023
Detect date
?
02/14/2023
Severity
?
High
Description

Multiple vulnerabilities were found in Git for Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. Remote code execution vulnerability in Git can be exploited remotely to execute arbitrary code.
  2. Information disclosure vulnerability in Git can be exploited to obtain sensitive information.
Exploitation

Public exploits exist for this vulnerability.

Affected products

Git for Windows earlier than 2.39.2

Solution

Update to the latest version
Git – Downloading Package

Original advisories

Git security vulnerabilities announced

Impacts
?
ACE 
[?]

OSI 
[?]

SB 
[?]
Related products
Git for Windows
CVE-IDS
?
CVE-2023-239465.0Warning
CVE-2023-224905.0Warning
Find out the statistics of the vulnerabilities spreading in your region