Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2025-21614

Опубликовано: 06 янв. 2025
Источник: nvd
CVSS3: 7.5
EPSS Низкий

Описание

go-git is a highly extensible git implementation library written in pure Go. A denial of service (DoS) vulnerability was discovered in go-git versions prior to v5.13. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. Users running versions of go-git from v4 and above are recommended to upgrade to v5.13 in order to mitigate this vulnerability.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:go-git_project:go-git:*:*:*:*:*:go:*:*
Версия до 5.13.0 (исключая)

EPSS

Процентиль: 30%
0.00107
Низкий

7.5 High

CVSS3

Дефекты

CWE-400
CWE-770

Связанные уязвимости

ubuntu логотип

CVE-2025-21614

CVSS3: 7.5
ubuntu
5 месяцев назад

go-git is a highly extensible git implementation library written in pure Go. A denial of service (DoS) vulnerability was discovered in go-git versions prior to v5.13. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. Users running versions of go-git from v4 and above are recommended to upgrade to v5.13 in order to mitigate this vulnerability.

redhat логотип

CVE-2025-21614

CVSS3: 7.5
redhat
5 месяцев назад

go-git is a highly extensible git implementation library written in pure Go. A denial of service (DoS) vulnerability was discovered in go-git versions prior to v5.13. This vulnerability allows an attacker to perform denial of service attacks by providing specially crafted responses from a Git server which triggers resource exhaustion in go-git clients. Users running versions of go-git from v4 and above are recommended to upgrade to v5.13 in order to mitigate this vulnerability.

msrc логотип

CVE-2025-21614

CVSS3: 7.5
msrc
5 месяцев назад

Описание отсутствует

debian логотип

CVE-2025-21614

CVSS3: 7.5
debian
5 месяцев назад

go-git is a highly extensible git implementation library written in pu ...

github логотип

GHSA-r9px-m959-cxf4

CVSS3: 7.5
github
5 месяцев назад

go-git clients vulnerable to DoS via maliciously crafted Git server replies

EPSS

Процентиль: 30%
0.00107
Низкий

7.5 High

CVSS3

Дефекты

CWE-400
CWE-770