CVE-2024-52005 (GCVE-0-2024-52005)
Vulnerability from cvelistv5
Published
2025-01-15 17:35
Modified
2025-01-15 20:10
Severity ?
7.5 (High) - CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Summary
Git is a source code management tool. When cloning from a server (or fetching, or pushing), informational or error messages are transported from the remote Git process to the client via the so-called "sideband channel". These messages will be prefixed with "remote:" and printed directly to the standard error output. Typically, this standard error output is connected to a terminal that understands ANSI escape sequences, which Git did not protect against. Most modern terminals support control sequences that can be used by a malicious actor to hide and misrepresent information, or to mislead the user into executing untrusted scripts. As requested on the git-security mailing list, the patches are under discussion on the public mailing list. Users are advised to update as soon as possible. Users unable to upgrade should avoid recursive clones unless they are from trusted sources.
References
security-advisories@github.comhttps://github.com/git/git/security/advisories/GHSA-7jjc-gg6m-3329
security-advisories@github.comhttps://lore.kernel.org/git/1M9FnZ-1taoNo1wwh-00ESSd@mail.gmx.net
Impacted products
Vendor Product Version
git git Version: >= 2.48.0, <= 2.48.1
Version: >= 2.47.0, <= 2.47.1
Version: >= 2.46.0, <= 2.46.3
Version: >= 2.45.0, <= 2.45.3
Version: >= 2.44.0, <= 2.44.3
Version: >= 2.43.0, <= 2.43.6
Version: >= 2.42.0, <= 2.42.4
Version: >= 2.41.0, <= 2.41.3
Version: <= 2.40.4
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2024-52005",
                        options: [
                           {
                              Exploitation: "none",
                           },
                           {
                              Automatable: "no",
                           },
                           {
                              "Technical Impact": "total",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2025-01-15T20:10:33.107830Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2025-01-15T20:10:36.473Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
      ],
      cna: {
         affected: [
            {
               product: "git",
               vendor: "git",
               versions: [
                  {
                     status: "affected",
                     version: ">= 2.48.0, <= 2.48.1",
                  },
                  {
                     status: "affected",
                     version: ">= 2.47.0, <= 2.47.1",
                  },
                  {
                     status: "affected",
                     version: ">= 2.46.0, <= 2.46.3",
                  },
                  {
                     status: "affected",
                     version: ">= 2.45.0, <= 2.45.3",
                  },
                  {
                     status: "affected",
                     version: ">= 2.44.0, <= 2.44.3",
                  },
                  {
                     status: "affected",
                     version: ">= 2.43.0, <= 2.43.6",
                  },
                  {
                     status: "affected",
                     version: ">= 2.42.0, <= 2.42.4",
                  },
                  {
                     status: "affected",
                     version: ">= 2.41.0, <= 2.41.3",
                  },
                  {
                     status: "affected",
                     version: "<= 2.40.4",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Git is a source code management tool. When cloning from a server (or fetching, or pushing), informational or error messages are transported from the remote Git process to the client via the so-called \"sideband channel\". These messages will be prefixed with \"remote:\" and printed directly to the standard error output. Typically, this standard error output is connected to a terminal that understands ANSI escape sequences, which Git did not protect against. Most modern terminals support control sequences that can be used by a malicious actor to hide and misrepresent information, or to mislead the user into executing untrusted scripts. As requested on the git-security mailing list, the patches are under discussion on the public mailing list. Users are advised to update as soon as possible. Users unable to upgrade should avoid recursive clones unless they are from trusted sources.",
            },
         ],
         metrics: [
            {
               cvssV4_0: {
                  attackComplexity: "HIGH",
                  attackRequirements: "NONE",
                  attackVector: "NETWORK",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  privilegesRequired: "NONE",
                  subAvailabilityImpact: "NONE",
                  subConfidentialityImpact: "NONE",
                  subIntegrityImpact: "NONE",
                  userInteraction: "ACTIVE",
                  vectorString: "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
                  version: "4.0",
                  vulnAvailabilityImpact: "HIGH",
                  vulnConfidentialityImpact: "HIGH",
                  vulnIntegrityImpact: "HIGH",
               },
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-116",
                     description: "CWE-116: Improper Encoding or Escaping of Output",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
            {
               descriptions: [
                  {
                     cweId: "CWE-150",
                     description: "CWE-150: Improper Neutralization of Escape, Meta, or Control Sequences",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2025-01-15T17:35:02.379Z",
            orgId: "a0819718-46f1-4df5-94e2-005712e83aaa",
            shortName: "GitHub_M",
         },
         references: [
            {
               name: "https://github.com/git/git/security/advisories/GHSA-7jjc-gg6m-3329",
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://github.com/git/git/security/advisories/GHSA-7jjc-gg6m-3329",
            },
            {
               name: "https://lore.kernel.org/git/1M9FnZ-1taoNo1wwh-00ESSd@mail.gmx.net",
               tags: [
                  "x_refsource_MISC",
               ],
               url: "https://lore.kernel.org/git/1M9FnZ-1taoNo1wwh-00ESSd@mail.gmx.net",
            },
         ],
         source: {
            advisory: "GHSA-7jjc-gg6m-3329",
            discovery: "UNKNOWN",
         },
         title: "The sideband payload is passed unfiltered to the terminal in git",
      },
   },
   cveMetadata: {
      assignerOrgId: "a0819718-46f1-4df5-94e2-005712e83aaa",
      assignerShortName: "GitHub_M",
      cveId: "CVE-2024-52005",
      datePublished: "2025-01-15T17:35:02.379Z",
      dateReserved: "2024-11-04T17:46:16.779Z",
      dateUpdated: "2025-01-15T20:10:36.473Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
   "vulnerability-lookup:meta": {
      nvd: "{\"cve\":{\"id\":\"CVE-2024-52005\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2025-01-15T18:15:24.130\",\"lastModified\":\"2025-01-15T18:15:24.130\",\"vulnStatus\":\"Received\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Git is a source code management tool. When cloning from a server (or fetching, or pushing), informational or error messages are transported from the remote Git process to the client via the so-called \\\"sideband channel\\\". These messages will be prefixed with \\\"remote:\\\" and printed directly to the standard error output. Typically, this standard error output is connected to a terminal that understands ANSI escape sequences, which Git did not protect against. Most modern terminals support control sequences that can be used by a malicious actor to hide and misrepresent information, or to mislead the user into executing untrusted scripts. As requested on the git-security mailing list, the patches are under discussion on the public mailing list. Users are advised to update as soon as possible. Users unable to upgrade should avoid recursive clones unless they are from trusted sources.\"},{\"lang\":\"es\",\"value\":\"Git es una herramienta de gestión de código fuente. Al clonar desde un servidor (o buscar o enviar), los mensajes de información o error se transportan desde el proceso Git remoto al cliente a través del llamado \\\"sideband channel\\\". Estos mensajes tendrán el prefijo \\\"remote:\\\" y se imprimirán directamente en la salida de error estándar. Normalmente, esta salida de error estándar está conectada a una terminal que entiende las secuencias de escape ANSI, contra las que Git no protegió. La mayoría de las terminales modernas admiten secuencias de control que pueden ser utilizadas por un actor malintencionado para ocultar y tergiversar información, o para engañar al usuario para que ejecute scripts no confiables. Como se solicitó en la lista de correo git-security, los parches se están discutiendo en la lista de correo pública. Se recomienda a los usuarios que actualicen lo antes posible. Los usuarios que no puedan actualizar deben evitar los clones recursivos a menos que sean de fuentes confiables.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"ACTIVE\",\"vulnerableSystemConfidentiality\":\"HIGH\",\"vulnerableSystemIntegrity\":\"HIGH\",\"vulnerableSystemAvailability\":\"HIGH\",\"subsequentSystemConfidentiality\":\"NONE\",\"subsequentSystemIntegrity\":\"NONE\",\"subsequentSystemAvailability\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirements\":\"NOT_DEFINED\",\"integrityRequirements\":\"NOT_DEFINED\",\"availabilityRequirements\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnerableSystemConfidentiality\":\"NOT_DEFINED\",\"modifiedVulnerableSystemIntegrity\":\"NOT_DEFINED\",\"modifiedVulnerableSystemAvailability\":\"NOT_DEFINED\",\"modifiedSubsequentSystemConfidentiality\":\"NOT_DEFINED\",\"modifiedSubsequentSystemIntegrity\":\"NOT_DEFINED\",\"modifiedSubsequentSystemAvailability\":\"NOT_DEFINED\",\"safety\":\"NOT_DEFINED\",\"automatable\":\"NOT_DEFINED\",\"recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-116\"},{\"lang\":\"en\",\"value\":\"CWE-150\"}]}],\"references\":[{\"url\":\"https://github.com/git/git/security/advisories/GHSA-7jjc-gg6m-3329\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://lore.kernel.org/git/1M9FnZ-1taoNo1wwh-00ESSd@mail.gmx.net\",\"source\":\"security-advisories@github.com\"}]}}",
      vulnrichment: {
         containers: "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-52005\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-01-15T20:10:33.107830Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-01-15T20:07:51.559Z\"}}], \"cna\": {\"title\": \"The sideband payload is passed unfiltered to the terminal in git\", \"source\": {\"advisory\": \"GHSA-7jjc-gg6m-3329\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV4_0\": {\"version\": \"4.0\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N\", \"userInteraction\": \"ACTIVE\", \"attackComplexity\": \"HIGH\", \"attackRequirements\": \"NONE\", \"privilegesRequired\": \"NONE\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"HIGH\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"HIGH\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"git\", \"product\": \"git\", \"versions\": [{\"status\": \"affected\", \"version\": \">= 2.48.0, <= 2.48.1\"}, {\"status\": \"affected\", \"version\": \">= 2.47.0, <= 2.47.1\"}, {\"status\": \"affected\", \"version\": \">= 2.46.0, <= 2.46.3\"}, {\"status\": \"affected\", \"version\": \">= 2.45.0, <= 2.45.3\"}, {\"status\": \"affected\", \"version\": \">= 2.44.0, <= 2.44.3\"}, {\"status\": \"affected\", \"version\": \">= 2.43.0, <= 2.43.6\"}, {\"status\": \"affected\", \"version\": \">= 2.42.0, <= 2.42.4\"}, {\"status\": \"affected\", \"version\": \">= 2.41.0, <= 2.41.3\"}, {\"status\": \"affected\", \"version\": \"<= 2.40.4\"}]}], \"references\": [{\"url\": \"https://github.com/git/git/security/advisories/GHSA-7jjc-gg6m-3329\", \"name\": \"https://github.com/git/git/security/advisories/GHSA-7jjc-gg6m-3329\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://lore.kernel.org/git/1M9FnZ-1taoNo1wwh-00ESSd@mail.gmx.net\", \"name\": \"https://lore.kernel.org/git/1M9FnZ-1taoNo1wwh-00ESSd@mail.gmx.net\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Git is a source code management tool. When cloning from a server (or fetching, or pushing), informational or error messages are transported from the remote Git process to the client via the so-called \\\"sideband channel\\\". These messages will be prefixed with \\\"remote:\\\" and printed directly to the standard error output. Typically, this standard error output is connected to a terminal that understands ANSI escape sequences, which Git did not protect against. Most modern terminals support control sequences that can be used by a malicious actor to hide and misrepresent information, or to mislead the user into executing untrusted scripts. As requested on the git-security mailing list, the patches are under discussion on the public mailing list. Users are advised to update as soon as possible. Users unable to upgrade should avoid recursive clones unless they are from trusted sources.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-116\", \"description\": \"CWE-116: Improper Encoding or Escaping of Output\"}]}, {\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-150\", \"description\": \"CWE-150: Improper Neutralization of Escape, Meta, or Control Sequences\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2025-01-15T17:35:02.379Z\"}}}",
         cveMetadata: "{\"cveId\": \"CVE-2024-52005\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-01-15T20:10:36.473Z\", \"dateReserved\": \"2024-11-04T17:46:16.779Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2025-01-15T17:35:02.379Z\", \"assignerShortName\": \"GitHub_M\"}",
         dataType: "CVE_RECORD",
         dataVersion: "5.1",
      },
   },
}


Log in or create an account to share your comment.

Security Advisory comment format.

This schema specifies the format of a comment related to a security advisory.

UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).



Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.