Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

git-for-windows — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting git-for-windows. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Git-for-windows is a Windows implementation of the Git version control system, primarily used for source code management and collaboration. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for its 10 recorded CVEs. Notable security characteristics include its frequent updates to address newly discovered vulnerabilities, though its complex integration with Windows systems has occasionally introduced additional attack surfaces. While no major public security incidents have been widely documented, the consistent discovery of vulnerabilities underscores the importance of maintaining current versions and applying security patches promptly.

Top products by git-for-windows: git
CVE IDTitleCVSSSeverityPublished
CVE-2026-32631 Git for Windows: `git clone` from manipulated repositories can leak NTLM hashes to arbitrary servers — gitCWE-200 7.4 High2026-04-15
CVE-2025-66413 Git for Windows leaks NTLM hash when cloning from an attacker-controlled server — gitCWE-200 7.4 High2026-03-10
CVE-2023-29012 Git CMD erroneously executes `doskey.exe` in the current directory, if it exists — gitCWE-427 7.3 High2023-04-25
CVE-2023-29011 Git for Windows's config file of `connect.exe` is susceptible to malicious placing — gitCWE-427 7.6 High2023-04-25
CVE-2023-25815 Git looks for localized messages in the wrong place — gitCWE-22 3.3 Low2023-04-25
CVE-2023-22743 Git for Windows' installer is susceptible to DLL side loading attacks — gitCWE-426 7.3 High2023-02-14
CVE-2023-23618 gitk can inadvertently call executables in the worktree — gitCWE-426 8.6 High2023-02-14
CVE-2022-41953 Git clone remote code execution vulnerability in git-for-windows — gitCWE-426 8.6 High2023-01-17
CVE-2022-31012 Git for Windows' installer can be tricked into executing an untrusted binary — gitCWE-426 8.2 High2022-07-12
CVE-2022-24765 Uncontrolled search for the Git directory in Git for Windows — gitCWE-427 6.0 Medium2022-04-12

This page lists every published CVE security advisory associated with git-for-windows. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.