Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv3

CVE-2023-41040

Published: 30/08/2023 Updated: 29/09/2023
CVSS v3 Base Score: 6.5 | Impact Score: 2.5 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Gitpython

Vulnerability Summary

GitPython is a python library used to interact with Git repositories. In order to resolve some git references, GitPython reads files from the `.git` directory, in some places the name of the file being read is provided by the user, GitPython doesn't check if this file is located outside the `.git` directory. This allows an malicious user to make GitPython read any file from the system. This vulnerability is present in github.com/gitpython-developers/GitPython/blob/1c8310d7cae144f74a671cbe17e51f63a830adbf/git/refs/symbolic.py#L174-L175. That code joins the base directory with a user given string without checking if the final path is located outside the base directory. This vulnerability cannot be used to read the contents of files but could in theory be used to trigger a denial of service for the program. This issue has not yet been addressed.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

gitpython project gitpython

Vendor Advisories

Red Hat: Moderate: Satellite 6.14.1 Async Security Update
概述 Moderate: Satellite 6141 Async Security Update 类型/严重性 Security Advisory: Moderate Red Hat Insights 补丁分析 识别并修复受此公告影响的系统。 查看受影响的系统 标题 Updated Satellite 614 packages that fixes Important security bugs and severalregular bugs are now available for Red Hat Sate ...
Red Hat: Moderate: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update
Synopsis Moderate: Red Hat Ansible Automation Platform 24 Product Security and Bug Fix Update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update is now available for Red Hat Ansible Automation Platform 24Red Hat P ...

Github Repositories

https://github.com/PBorocz/raindrop-io-py

API interface to the Raindrop Bookmark Manager.

|docs| Raindrop-IO-py Python wrapper for the API to the Raindropio Bookmark Manager Capabilities include the ability to create, update, delete both link & file-based Raindrops; create, update delete Raindrop collections, tags etc Background I wanted to use an existing API for the Raindrop Bookmark Manager (python-raindropio) to perform some bulk operations through a

References

CWE-22https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58chttps://github.com/gitpython-developers/GitPython/blob/1c8310d7cae144f74a671cbe17e51f63a830adbf/git/refs/symbolic.py#L174-L175https://lists.debian.org/debian-lts-announce/2023/09/msg00036.htmlhttps://access.redhat.com/errata/RHSA-2023:7851https://nvd.nist.govhttps://github.com/PBorocz/raindrop-io-py
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgeryCVE-2024-34351CVE-2024-1076CVE-2024-25522CVE-2024-34547CVE-2024-4644unauthorizedremoteCVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook