CVE-2025-48384— Git allows arbitrary code execution through broken config quoting
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-48384
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Git allows arbitrary code execution through broken config quoting
Source: NVD (National Vulnerability Database)
Vulnerability Description
Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
解释冲突
Source: NVD (National Vulnerability Database)
Vulnerability Title
Git 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Git是Git开源的一套免费、开源的分布式版本控制系统。 Git存在安全漏洞,该漏洞源于在处理配置值时尾随回车符的处理不当,可能使子模块被错误检出到由符号链接指向的钩子目录,意外执行其中的可执行脚本。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
II. Public POCs for CVE-2025-48384
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | Breaking git with a carriage return and cloning RCE | https://github.com/acheong08/CVE-2025-48384 | POC Details |
| 2 | for CVE-2025-48384 test | https://github.com/fishyyh/CVE-2025-48384 | POC Details |
| 3 | None | https://github.com/kallydev/cve-2025-48384-hook | POC Details |
| 4 | None | https://github.com/fishyyh/CVE-2025-48384-POC | POC Details |
| 5 | None | https://github.com/liamg/CVE-2025-48384-submodule | POC Details |
| 6 | PoC for CVE-2025-48384 | https://github.com/liamg/CVE-2025-48384 | POC Details |
| 7 | None | https://github.com/ppd520/CVE-2025-48384 | POC Details |
| 8 | 漏洞测试 | https://github.com/NigelX/CVE-2025-48384 | POC Details |
| 9 | None | https://github.com/greatyy/CVE-2025-48384-p | POC Details |
| 10 | CVE-2025-48384 | https://github.com/testdjshan/CVE-2025-48384 | POC Details |
| 11 | None | https://github.com/altm4n/cve-2025-48384 | POC Details |
| 12 | None | https://github.com/altm4n/cve-2025-48384-hub | POC Details |
| 13 | None | https://github.com/p1026/CVE-2025-48384 | POC Details |
| 14 | PoC dockerfile image for CVE-2025-48384 | https://github.com/vinieger/vinieger-CVE-2025-48384-Dockerfile | POC Details |
| 15 | None | https://github.com/ECHO6789/CVE-2025-48384-submodule | POC Details |
| 16 | None | https://github.com/nguyentranbaotran/cve-2025-48384-poc | POC Details |
| 17 | None | https://github.com/admin-ping/CVE-2025-48384-RCE | POC Details |
| 18 | None | https://github.com/simplyfurious/CVE-2025-48384-submodule_test | POC Details |
| 19 | None | https://github.com/Anezatraa/CVE-2025-48384-submodule | POC Details |
| 20 | CVE-2025-48384 PoC | https://github.com/IK-20211125/CVE-2025-48384 | POC Details |
| 21 | None | https://github.com/elprogramadorgt/CVE-2025-48384 | POC Details |
| 22 | None | https://github.com/rtefx/CVE-2025-48384 | POC Details |
| 23 | test for CVE-2025-48384 | https://github.com/f1shh/CVE-2025-48384 | POC Details |
| 24 | PoC for CVE-2025-48384 | https://github.com/fluoworite/CVE-2025-48384 | POC Details |
| 25 | None | https://github.com/fluoworite/CVE-2025-48384-sub | POC Details |
| 26 | None | https://github.com/beishanxueyuan/CVE-2025-48384 | POC Details |
| 27 | None | https://github.com/beishanxueyuan/CVE-2025-48384-test | POC Details |
| 28 | None | https://github.com/jideasn/cve-2025-48384 | POC Details |
| 29 | None | https://github.com/testtianmaaaa/CVE-2025-48384 | POC Details |
| 30 | None | https://github.com/replicatorbot/CVE-2025-48384 | POC Details |
| 31 | None | https://github.com/replicatorbot/CVE-2025-48384-POC | POC Details |
| 32 | PoC | https://github.com/eliox01/CVE-2025-48384 | POC Details |
| 33 | test | https://github.com/wzx5002/CVE-2025-48384 | POC Details |
| 34 | sub for CVE-2025-48384 | https://github.com/wzx5002/totallynotsuspicious | POC Details |
| 35 | Breaking git with a carriage return and cloning RCE | https://github.com/butyraldehyde/CVE-2025-48384-PoC | POC Details |
| 36 | RCE hook | https://github.com/butyraldehyde/CVE-2025-48384-PoC-Part2 | POC Details |
| 37 | PoC for CVE-2025-48384 | https://github.com/jacobholtz/CVE-2025-48384-poc | POC Details |
| 38 | None | https://github.com/jacobholtz/CVE-2025-48384-submodule | POC Details |
| 39 | None | https://github.com/arun1033/CVE-2025-48384 | POC Details |
| 40 | CVE-2025-48384 Scanner | https://github.com/EdwardYeIntrix/CVE-2025-48384-Scanner | POC Details |
| 41 | GIT vulnerability | Carriage Return and RCE on cloning | https://github.com/s41r4j/CVE-2025-48384 | POC Details |
| 42 | CVE-2025-48384-submodule | https://github.com/s41r4j/CVE-2025-48384-submodule | POC Details |
| 43 | might delete later | https://github.com/airkewld/cve-2025-48384 | POC Details |
| 44 | will delete later | https://github.com/airkewld/cve-2025-48384-submodule | POC Details |
| 45 | None | https://github.com/mukesh-610/cve-2025-48384-exploit | POC Details |
| 46 | None | https://github.com/mukesh-610/cve-2025-48384 | POC Details |
| 47 | None | https://github.com/MarcoTondolo/cve-2025-48384-poc | POC Details |
| 48 | None | https://github.com/zr0n/CVE-2025-48384-sub | POC Details |
| 49 | A proof of concept of remote code execution | https://github.com/zr0n/CVE-2025-48384-main | POC Details |
| 50 | GIT vulnerability | Carriage Return and RCE on cloning | https://github.com/vignesh21-git/CVE-2025-48384 | POC Details |
| 51 | Test | https://github.com/vignesh21-git/CVE-2025-48384-submodule | POC Details |
| 52 | Superproject repo for Backup Exec CVE-2025-48384 exploit | https://github.com/DayDayDayDreaming/backup-exec-cve-48384 | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-48384
请登录查看更多情报信息。
Same Patch Batch · git · 2025-07-08 · 3 CVEs total
| CVE-2025-48386 | 6.3 MEDIUM | Git allows a buffer overflow in 'wincred' credential helper |
| CVE-2025-48385 | Git alllows arbitrary file writes via bundle-uri parameter injection |
IV. Related Vulnerabilities
Same product: git
- CVE-2026-32631
Git for Windows: `git clone` from manipulated repositories c - CVE-2025-66413
Git for Windows leaks NTLM hash when cloning from an attacke - CVE-2025-48385
Git alllows arbitrary file writes via bundle-uri parameter i - CVE-2025-48386
Git allows a buffer overflow in 'wincred' credential helper - CVE-2024-52005
The sideband payload is passed unfiltered to the terminal in
Same vendor: git
- CVE-2025-48385
Git alllows arbitrary file writes via bundle-uri parameter i - CVE-2025-48386
Git allows a buffer overflow in 'wincred' credential helper - CVE-2024-52005
The sideband payload is passed unfiltered to the terminal in - CVE-2024-50349
Git does not sanitize URLs when asking for credentials inter - CVE-2024-52006
Newline confusion in credential helpers can lead to credenti
Same weakness: CWE-436
- CVE-2026-42273
Heimdall: Case-sensitive host matching may lead to policy by - CVE-2026-42272
Heimdall: Case-sensitive handling of URL-encoded slashes may - CVE-2026-30246
github.com/gofiber/fiber/v3 cache middleware can mix respons - CVE-2026-6322
fast-uri vulnerable to host confusion via percent-encoded au - CVE-2026-41248
Official Clerk JavaScript SDKs: Middleware-based route prot
V. Comments for CVE-2025-48384
No comments yet