Description

Versions of the package simple-git before 3.16.0 are vulnerable to Remote Code Execution (RCE) via the clone(), pull(), push() and listRemote() methods, due to improper input sanitization. This vulnerability exists due to an incomplete fix of [CVE-2022-25912](https://security.snyk.io/vuln/SNYK-JS-SIMPLEGIT-3112221).

Remediation

References

https://security.snyk.io/vuln/SNYK-JS-SIMPLEGIT-3177391

https://github.com/steveukx/git-js/pull/881/commits/95459310e5b8f96e20bb77ef1a6559036b779e13

https://github.com/steveukx/git-js/commit/ec97a39ab60b89e870c5170121cd9c1603cc1951

Related Vulnerabilities

CVE-2018-1000548 Vulnerability in maven package com.umlet:umlet-swing

CVE-2020-9488 Vulnerability in maven package org.apache.logging.log4j:log4j

CVE-2021-43308 Vulnerability in npm package markdown-link-extractor

CVE-2023-36479 Vulnerability in maven package org.eclipse.jetty.ee8:jetty-ee8-servlets

CVE-2023-40813 Vulnerability in maven package org.opencrx:opencrx-core-models

Severity

Critical

Classification

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Exploit Third Party Advisory Patch NVD-CWE-noinfo