EPSS
Percentile
76.3%
github.com/git-lfs/git-lfs is vulnerable to remote code execution (RCE) attacks. The application does not sanitize ssh:// URLs passed to it, allowing a malicious user to execute arbitrary commands.
ssh://
github.com/git-lfs/git-lfs/pull/2241