Multiple vulnerabilities in Git for Windows

Description

Multiple vulnerabilities were found in Git for Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, execute arbitrary code, gain privileges.

Below is a complete list of vulnerabilities:

1. Security vulnerability can be exploited to bypass security restrictions.
2. Security vulnerability can be exploited to bypass security restrictions.
3. A remote code execution vulnerability can be exploited remotely to execute arbitrary code.
4. An elevation of privilege vulnerability can be exploited remotely to gain privileges.
5. A remote code execution vulnerability in Visual Studio Code can be exploited remotely to execute arbitrary code.
6. An information disclosure vulnerability can be exploited remotely to obtain sensitive information.
7. A remote code execution vulnerability in Visual Studio Code Python Extension can be exploited remotely to execute arbitrary code.

Original advisories

• Git for Windows 2.50.1

Exploitation

Public exploits exist for this vulnerability.

Related products

• Git-for-Windows

CVE list

• CVE-2024-52006
  warning
• CVE-2024-50349
  warning
• CVE-2025-48385
  critical
• CVE-2025-46334
  critical
• CVE-2025-27614
  critical
• CVE-2025-27613
  warning
• CVE-2025-48384
  critical
• CVE-2025-48386
  high
• CVE-2025-46835
  critical

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com