Veracode Vulnerability DatabaseVERACODE:25254

HistoryMay 10, 2020 - 11:22 p.m.

Vulners
/
Veracode
/
Remote Code Execution (RCE)

Remote Code Execution (RCE)

2020-05-1023:22:08

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.077 Low

EPSS

Percentile

94.2%

JSON

Git is vulnerable to remote code execution vulnerability. It exists when Git for Visual Studio improperly sanitizes input.

CPENameOperatorVersion
git:3.11eq2.24.1-r0
git:3.7eq2.15.3-r0
git:3.11eq2.24.1-r0
git:3.7eq2.15.3-r0

Name	Operator	Version
git:3.11	eq	2.24.1-r0
git:3.7	eq	2.15.3-r0
git:3.11	eq	2.24.1-r0
git:3.7	eq	2.15.3-r0

References

lists.opensuse.org/opensuse-security-announce/2020-01/msg00056.html

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1350

public-inbox.org/git/[email protected]/

mscve 1

symantec 1

openvas 15

gentoo 2

nessus 22

mageia 1

ubuntucve 4

alpinelinux 4

cvelist 4

debiancve 4

osv 4

cve 4

nvd 4

redhatcve 3

prion 4

kaspersky 1

oraclelinux 1

fedora 3

qualysblog 1

amazon 3

altlinux 2

cloudfoundry 1

suse 2

ubuntu 1

threatpost 1

mscve

Git for Visual Studio Remote Code Execution Vulnerability

2019-12-10 08:00:00

symantec

Microsoft Git for Visual Studio CVE-2019-1350 Remote Code Execution Vulnerability

2019-12-10 00:00:00

openvas

Mageia: Security Advisory (MGASA-2019-0391)

2022-01-28 00:00:00

Fedora Update for libgit2 FEDORA-2019-9c3d054f39

2020-01-09 00:00:00

Ubuntu: Security Advisory (USN-4220-1)

2019-12-11 00:00:00

gentoo

libgit2: Multiple vulnerabilities

2020-03-19 00:00:00

Git: Multiple vulnerabilities

2020-03-15 00:00:00

nessus

GLSA-202003-42 : libgit2: Multiple vulnerabilities

2020-03-20 00:00:00

Security Updates for Microsoft Visual Studio Products (December 2019)

2019-12-10 00:00:00

SUSE SLES15 Security Update : libgit2 (SUSE-SU-2022:3495-1)

2022-10-05 00:00:00

mageia

Updated libgit2 packages fix security vulnerabilities

2019-12-15 21:03:05

ubuntucve

CVE-2019-1349

2019-12-10 00:00:00

CVE-2019-1350

2019-12-10 00:00:00

CVE-2019-1352

2019-12-10 00:00:00

alpinelinux

CVE-2019-1349

2020-01-24 21:15:12

CVE-2019-1352

2020-01-24 21:15:12

CVE-2019-1354

2020-01-24 21:15:12

cvelist

CVE-2019-1352

2020-01-24 20:50:26

CVE-2019-1350

2020-01-24 20:50:25

CVE-2019-1354

2020-01-24 20:50:26

debiancve

CVE-2019-1354

2020-01-24 21:15:12

CVE-2019-1350

2020-01-24 21:15:12

CVE-2019-1352

2020-01-24 21:15:12

osv

CVE-2019-1352

2020-01-24 21:15:12

CVE-2019-1349

2020-01-24 21:15:12

CVE-2019-1354

2020-01-24 21:15:12

cve

CVE-2019-1354

2020-01-24 21:15:12

CVE-2019-1350

2020-01-24 21:15:12

CVE-2019-1352

2020-01-24 21:15:12

nvd

CVE-2019-1354

2020-01-24 21:15:12

CVE-2019-1350

2020-01-24 21:15:12

CVE-2019-1352

2020-01-24 21:15:12

redhatcve

CVE-2019-1350

2019-12-11 00:21:07

CVE-2019-1354

2019-12-11 00:51:03

CVE-2019-1352

2019-12-11 00:50:56

prion

Remote code execution

2020-01-24 21:15:00

Remote code execution

2020-01-24 21:15:00

Remote code execution

2020-01-24 21:15:00

kaspersky

KLA11618 Multiple vulnerabilities in Microsoft Developer Tools

2019-12-10 00:00:00

oraclelinux

git security update

2019-12-19 00:00:00

fedora

[SECURITY] Fedora 31 Update: libgit2-0.28.4-1.fc31

2019-12-17 01:46:03

[SECURITY] Fedora 31 Update: git-2.24.1-1.fc31

2019-12-18 01:56:26

[SECURITY] Fedora 30 Update: git-2.21.1-1.fc30

2020-01-04 22:16:13

qualysblog

December 2019 Patch Tuesday – 36 Vulns, 7 Critical, Actively Attacked Win32k vuln, Adobe vulns

2019-12-10 19:04:23

amazon

Important: git

2023-02-17 00:11:00

Important: git

2019-12-13 19:06:00

Important: git

2019-12-09 22:06:00

altlinux

Security fix for the ALT Linux 8 package git version 2.24.1-alt1

2019-12-12 00:00:00

Security fix for the ALT Linux 10 package git version 2.24.1-alt1

2019-12-08 00:00:00

cloudfoundry

USN-4220-1: Git vulnerabilities | Cloud Foundry

2019-12-18 00:00:00

suse

Security update for git (important)

2020-01-29 00:00:00

Security update for git (moderate)

2020-05-02 00:00:00

ubuntu

Git vulnerabilities

2019-12-10 00:00:00

threatpost

Microsoft Zaps Actively Exploited Zero-Day Bug

2019-12-10 21:21:24

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.077 Low

EPSS

Percentile

94.2%

JSON

Related for VERACODE:25254