git-scm
Security Risk Profile
Security Risk Score
Comprehensive risk assessment based on 41 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from January 12, 2009 to present
Threat Assessment
Severity Distribution
Exploit Likelihood
Age Distribution
Common Weaknesses (CWE)
Most Affected Products
Recent Vulnerabilities
See more →Git Link Following Vulnerability
Git vulnerable to Remote Code Execution while cloning special-crafted local repositories
Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at will
Local Git clone may hardlink arbitrary user-readable files into the new repository's "objects/" directory
Git's protections for cloning untrusted repositories can be bypassed
Arbitrary configuration injection via `git submodule deinit`
"git apply --reject" partially-controlled arbitrary file write
Git vulnerable to local clone-based data exfiltration with non-local transports
Git's `git apply` overwriting paths outside the working tree
Git clone remote code execution vulnerability in git-for-windows
Monitor git-scm in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.