
We found results for “”
CVE-2025-27613
Good to know:

Date: July 10, 2025
Gitk: When a user clones an untrusted repository and runs Gitk without additional command arguments, any writable file can be created and truncated. The option "Support per-file encoding" must have been enabled. The operation "Show origin of this line" is affected as well, regardless of the option being enabled or not.
Severity Score
Related Resources (6)
Severity Score
Weakness Type (CWE)
Top Fix

Upgrade Version
Upgrade to version https://github.com/git/git.git - v2.50.1;https://github.com/git/git.git - v2.49.1;https://github.com/git/git.git - v2.48.2;https://github.com/git/git.git - v2.47.3;https://github.com/git/git.git - v2.46.4;https://github.com/git/git.git - v2.45.4;https://github.com/git/git.git - v2.44.4;https://github.com/git/git.git - v2.43.7
CVSS v3.1
Base Score: |
|
---|---|
Attack Vector (AV): | LOCAL |
Attack Complexity (AC): | LOW |
Privileges Required (PR): | NONE |
User Interaction (UI): | REQUIRED |
Scope (S): | CHANGED |
Confidentiality (C): | NONE |
Integrity (I): | LOW |
Availability (A): | NONE |