Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/python-git@3.1.50-1?distro=trixie
Typedeb
Namespacedebian
Namepython-git
Version3.1.50-1
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-2z23-b3zg-wuh5
vulnerability_id VCID-2z23-b3zg-wuh5
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-44244
reference_id
reference_type
scores
0
value 0.00026
scoring_system epss
scoring_elements 0.07857
published_at 2026-06-11T12:55:00Z
1
value 0.00026
scoring_system epss
scoring_elements 0.07894
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-44244
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-44244
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-44244
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/gitpython-developers/GitPython
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-44244
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-44244
5
reference_url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.49
reference_id 3.1.49
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-05-07T20:09:23Z/
url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.49
6
reference_url https://github.com/advisories/GHSA-v87r-6q3f-2j67
reference_id GHSA-v87r-6q3f-2j67
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-v87r-6q3f-2j67
7
reference_url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-v87r-6q3f-2j67
reference_id GHSA-v87r-6q3f-2j67
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-05-07T20:09:23Z/
url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-v87r-6q3f-2j67
8
reference_url https://usn.ubuntu.com/8303-1/
reference_id USN-8303-1
reference_type
scores
url https://usn.ubuntu.com/8303-1/
fixed_packages
0
url pkg:deb/debian/python-git@3.1.50-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.50-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.50-1%3Fdistro=trixie
aliases CVE-2026-44244, GHSA-v87r-6q3f-2j67
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2z23-b3zg-wuh5
1
url VCID-fp8f-ckcg-47a1
vulnerability_id VCID-fp8f-ckcg-47a1
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-44243
reference_id
reference_type
scores
0
value 0.00159
scoring_system epss
scoring_elements 0.36611
published_at 2026-06-11T12:55:00Z
1
value 0.00159
scoring_system epss
scoring_elements 0.36791
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-44243
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-44243
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-44243
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/gitpython-developers/GitPython
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
1
value 7.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:P
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-44243
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
1
value 7.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:P
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-44243
5
reference_url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.48
reference_id 3.1.48
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
1
value 7.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:P
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-07T19:12:42Z/
url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.48
6
reference_url https://github.com/advisories/GHSA-7545-fcxq-7j24
reference_id GHSA-7545-fcxq-7j24
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-7545-fcxq-7j24
7
reference_url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-7545-fcxq-7j24
reference_id GHSA-7545-fcxq-7j24
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value 7.8
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:P
3
value HIGH
scoring_system generic_textual
scoring_elements
4
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-05-07T19:12:42Z/
url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-7545-fcxq-7j24
8
reference_url https://usn.ubuntu.com/8303-1/
reference_id USN-8303-1
reference_type
scores
url https://usn.ubuntu.com/8303-1/
fixed_packages
0
url pkg:deb/debian/python-git@3.1.50-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.50-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.50-1%3Fdistro=trixie
aliases CVE-2026-44243, GHSA-7545-fcxq-7j24
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fp8f-ckcg-47a1
2
url VCID-hph8-mnnk-v7ft
vulnerability_id VCID-hph8-mnnk-v7ft
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-42215
reference_id
reference_type
scores
0
value 0.00034
scoring_system epss
scoring_elements 0.10578
published_at 2026-06-11T12:55:00Z
1
value 0.00034
scoring_system epss
scoring_elements 0.10638
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-42215
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42215
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42215
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/gitpython-developers/GitPython
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-42215
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-42215
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1135349
reference_id 1135349
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1135349
6
reference_url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.47
reference_id 3.1.47
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-05-08T14:39:17Z/
url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.47
7
reference_url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-rpm5-65cw-6hj4
reference_id GHSA-rpm5-65cw-6hj4
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-05-08T14:39:17Z/
url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-rpm5-65cw-6hj4
8
reference_url https://usn.ubuntu.com/8303-1/
reference_id USN-8303-1
reference_type
scores
url https://usn.ubuntu.com/8303-1/
fixed_packages
0
url pkg:deb/debian/python-git@3.1.50-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.50-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.50-1%3Fdistro=trixie
aliases CVE-2026-42215, GHSA-rpm5-65cw-6hj4
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hph8-mnnk-v7ft
3
url VCID-prtd-77t4-37er
vulnerability_id VCID-prtd-77t4-37er
summary
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-41040.json
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-41040.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-41040
reference_id
reference_type
scores
0
value 0.0036
scoring_system epss
scoring_elements 0.58643
published_at 2026-06-12T12:55:00Z
1
value 0.0036
scoring_system epss
scoring_elements 0.58532
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-41040
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41040
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41040
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/gitpython-developers/GitPython
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython
5
reference_url https://lists.debian.org/debian-lts-announce/2024/10/msg00030.html
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2024/10/msg00030.html
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-41040
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-41040
7
reference_url https://github.com/gitpython-developers/GitPython/pull/1672
reference_id 1672
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
2
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
3
value MODERATE
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T18:04:46Z/
url https://github.com/gitpython-developers/GitPython/pull/1672
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2247040
reference_id 2247040
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2247040
9
reference_url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.37
reference_id 3.1.37
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
2
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
3
value MODERATE
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T18:04:46Z/
url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.37
10
reference_url https://github.com/gitpython-developers/GitPython/commit/74e55ee4544867e1bd976b7df5a45869ee397b0b
reference_id 74e55ee4544867e1bd976b7df5a45869ee397b0b
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
2
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
3
value MODERATE
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T18:04:46Z/
url https://github.com/gitpython-developers/GitPython/commit/74e55ee4544867e1bd976b7df5a45869ee397b0b
11
reference_url https://github.com/gitpython-developers/GitPython/commit/e98f57b81f792f0f5e18d33ee658ae395f9aa3c4
reference_id e98f57b81f792f0f5e18d33ee658ae395f9aa3c4
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
2
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
3
value MODERATE
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T18:04:46Z/
url https://github.com/gitpython-developers/GitPython/commit/e98f57b81f792f0f5e18d33ee658ae395f9aa3c4
12
reference_url https://github.com/advisories/GHSA-cwvm-v4w8-q58c
reference_id GHSA-cwvm-v4w8-q58c
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-cwvm-v4w8-q58c
13
reference_url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58c
reference_id GHSA-cwvm-v4w8-q58c
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
2
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
3
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
4
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
5
value MODERATE
scoring_system generic_textual
scoring_elements
6
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T18:04:46Z/
url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58c
14
reference_url https://lists.debian.org/debian-lts-announce/2023/09/msg00036.html
reference_id msg00036.html
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
2
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
3
value MODERATE
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T18:04:46Z/
url https://lists.debian.org/debian-lts-announce/2023/09/msg00036.html
15
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/gitpython/PYSEC-2023-165.yaml
reference_id PYSEC-2023-165.yaml
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
2
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
3
value MODERATE
scoring_system generic_textual
scoring_elements
4
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T18:04:46Z/
url https://github.com/pypa/advisory-database/tree/main/vulns/gitpython/PYSEC-2023-165.yaml
16
reference_url https://access.redhat.com/errata/RHSA-2023:7851
reference_id RHSA-2023:7851
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7851
17
reference_url https://access.redhat.com/errata/RHSA-2024:0190
reference_id RHSA-2024:0190
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0190
18
reference_url https://access.redhat.com/errata/RHSA-2024:0215
reference_id RHSA-2024:0215
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0215
19
reference_url https://access.redhat.com/errata/RHSA-2024:0322
reference_id RHSA-2024:0322
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0322
20
reference_url https://access.redhat.com/errata/RHSA-2024:1640
reference_id RHSA-2024:1640
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1640
21
reference_url https://github.com/gitpython-developers/GitPython/blob/1c8310d7cae144f74a671cbe17e51f63a830adbf/git/refs/symbolic.py#L174-L175
reference_id symbolic.py#L174-L175
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value 4.0
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
2
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
3
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
4
value MODERATE
scoring_system generic_textual
scoring_elements
5
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T18:04:46Z/
url https://github.com/gitpython-developers/GitPython/blob/1c8310d7cae144f74a671cbe17e51f63a830adbf/git/refs/symbolic.py#L174-L175
22
reference_url https://usn.ubuntu.com/8303-1/
reference_id USN-8303-1
reference_type
scores
url https://usn.ubuntu.com/8303-1/
fixed_packages
0
url pkg:deb/debian/python-git@3.1.14-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.14-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z23-b3zg-wuh5
1
vulnerability VCID-fp8f-ckcg-47a1
2
vulnerability VCID-hph8-mnnk-v7ft
3
vulnerability VCID-yvgm-nrme-tfgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.14-1%3Fdistro=trixie
1
url pkg:deb/debian/python-git@3.1.14-1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/python-git@3.1.14-1%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.14-1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/python-git@3.1.30-1%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/python-git@3.1.30-1%2Bdeb12u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z23-b3zg-wuh5
1
vulnerability VCID-fp8f-ckcg-47a1
2
vulnerability VCID-hph8-mnnk-v7ft
3
vulnerability VCID-yvgm-nrme-tfgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.30-1%252Bdeb12u2%3Fdistro=trixie
3
url pkg:deb/debian/python-git@3.1.36-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.36-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.36-1%3Fdistro=trixie
4
url pkg:deb/debian/python-git@3.1.44-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.44-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z23-b3zg-wuh5
1
vulnerability VCID-fp8f-ckcg-47a1
2
vulnerability VCID-hph8-mnnk-v7ft
3
vulnerability VCID-yvgm-nrme-tfgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.44-1%3Fdistro=trixie
5
url pkg:deb/debian/python-git@3.1.50-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.50-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.50-1%3Fdistro=trixie
aliases CVE-2023-41040, GHSA-cwvm-v4w8-q58c, PYSEC-2023-165
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-prtd-77t4-37er
4
url VCID-r172-bxav-a3ez
vulnerability_id VCID-r172-bxav-a3ez
summary
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40590.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40590.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-40590
reference_id
reference_type
scores
0
value 0.00371
scoring_system epss
scoring_elements 0.59309
published_at 2026-06-11T12:55:00Z
1
value 0.00371
scoring_system epss
scoring_elements 0.59419
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-40590
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/gitpython-developers/GitPython
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython
4
reference_url https://github.com/gitpython-developers/GitPython/commit/8b75434e2c8a082cdeb4971cc6f0ee2bafec45bc
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython/commit/8b75434e2c8a082cdeb4971cc6f0ee2bafec45bc
5
reference_url https://github.com/gitpython-developers/GitPython/issues/1635
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython/issues/1635
6
reference_url https://github.com/gitpython-developers/GitPython/pull/1636
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython/pull/1636
7
reference_url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.33
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.33
8
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/gitpython/PYSEC-2023-161.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/gitpython/PYSEC-2023-161.yaml
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-40590
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-40590
10
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2235871
reference_id 2235871
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2235871
11
reference_url https://github.com/advisories/GHSA-wfm5-v35h-vwf4
reference_id GHSA-wfm5-v35h-vwf4
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wfm5-v35h-vwf4
12
reference_url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-wfm5-v35h-vwf4
reference_id GHSA-wfm5-v35h-vwf4
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
3
value HIGH
scoring_system generic_textual
scoring_elements
4
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-10-02T14:04:30Z/
url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-wfm5-v35h-vwf4
13
reference_url https://docs.python.org/3/library/subprocess.html#popen-constructor
reference_id subprocess.html#popen-constructor
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-10-02T14:04:30Z/
url https://docs.python.org/3/library/subprocess.html#popen-constructor
fixed_packages
0
url pkg:deb/debian/python-git@0?distro=trixie
purl pkg:deb/debian/python-git@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@0%3Fdistro=trixie
1
url pkg:deb/debian/python-git@3.1.14-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.14-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z23-b3zg-wuh5
1
vulnerability VCID-fp8f-ckcg-47a1
2
vulnerability VCID-hph8-mnnk-v7ft
3
vulnerability VCID-yvgm-nrme-tfgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.14-1%3Fdistro=trixie
2
url pkg:deb/debian/python-git@3.1.30-1%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/python-git@3.1.30-1%2Bdeb12u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z23-b3zg-wuh5
1
vulnerability VCID-fp8f-ckcg-47a1
2
vulnerability VCID-hph8-mnnk-v7ft
3
vulnerability VCID-yvgm-nrme-tfgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.30-1%252Bdeb12u2%3Fdistro=trixie
3
url pkg:deb/debian/python-git@3.1.44-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.44-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z23-b3zg-wuh5
1
vulnerability VCID-fp8f-ckcg-47a1
2
vulnerability VCID-hph8-mnnk-v7ft
3
vulnerability VCID-yvgm-nrme-tfgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.44-1%3Fdistro=trixie
4
url pkg:deb/debian/python-git@3.1.50-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.50-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.50-1%3Fdistro=trixie
aliases CVE-2023-40590, GHSA-wfm5-v35h-vwf4, PYSEC-2023-161
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r172-bxav-a3ez
5
url VCID-v1x7-st14-rfc1
vulnerability_id VCID-v1x7-st14-rfc1
summary
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40267.json
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40267.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-40267
reference_id
reference_type
scores
0
value 0.00375
scoring_system epss
scoring_elements 0.59533
published_at 2026-06-11T12:55:00Z
1
value 0.00375
scoring_system epss
scoring_elements 0.59642
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-40267
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40267
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40267
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/gitpython-developers/GitPython
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython
5
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/gitpython/PYSEC-2023-137.yaml
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/gitpython/PYSEC-2023-137.yaml
6
reference_url https://lists.debian.org/debian-lts-announce/2024/10/msg00030.html
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2024/10/msg00030.html
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R
9
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R
11
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-40267
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-40267
12
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1043503
reference_id 1043503
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1043503
13
reference_url https://github.com/gitpython-developers/GitPython/pull/1609
reference_id 1609
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-10-10T18:18:08Z/
url https://github.com/gitpython-developers/GitPython/pull/1609
14
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2231474
reference_id 2231474
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2231474
15
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH/
reference_id AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-10-10T18:18:08Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH/
16
reference_url https://github.com/gitpython-developers/GitPython/commit/ca965ecc81853bca7675261729143f54e5bf4cdd
reference_id ca965ecc81853bca7675261729143f54e5bf4cdd
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-10-10T18:18:08Z/
url https://github.com/gitpython-developers/GitPython/commit/ca965ecc81853bca7675261729143f54e5bf4cdd
17
reference_url https://github.com/advisories/GHSA-pr76-5cm5-w9cj
reference_id GHSA-pr76-5cm5-w9cj
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-pr76-5cm5-w9cj
18
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R/
reference_id PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-10-10T18:18:08Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R/
19
reference_url https://access.redhat.com/errata/RHSA-2023:4971
reference_id RHSA-2023:4971
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4971
20
reference_url https://access.redhat.com/errata/RHSA-2023:4991
reference_id RHSA-2023:4991
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4991
21
reference_url https://access.redhat.com/errata/RHSA-2023:5931
reference_id RHSA-2023:5931
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5931
22
reference_url https://access.redhat.com/errata/RHSA-2023:6818
reference_id RHSA-2023:6818
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:6818
23
reference_url https://usn.ubuntu.com/6326-1/
reference_id USN-6326-1
reference_type
scores
url https://usn.ubuntu.com/6326-1/
fixed_packages
0
url pkg:deb/debian/python-git@3.1.14-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.14-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z23-b3zg-wuh5
1
vulnerability VCID-fp8f-ckcg-47a1
2
vulnerability VCID-hph8-mnnk-v7ft
3
vulnerability VCID-yvgm-nrme-tfgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.14-1%3Fdistro=trixie
1
url pkg:deb/debian/python-git@3.1.14-1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/python-git@3.1.14-1%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.14-1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/python-git@3.1.30-1%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/python-git@3.1.30-1%2Bdeb12u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z23-b3zg-wuh5
1
vulnerability VCID-fp8f-ckcg-47a1
2
vulnerability VCID-hph8-mnnk-v7ft
3
vulnerability VCID-yvgm-nrme-tfgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.30-1%252Bdeb12u2%3Fdistro=trixie
3
url pkg:deb/debian/python-git@3.1.36-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.36-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.36-1%3Fdistro=trixie
4
url pkg:deb/debian/python-git@3.1.44-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.44-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z23-b3zg-wuh5
1
vulnerability VCID-fp8f-ckcg-47a1
2
vulnerability VCID-hph8-mnnk-v7ft
3
vulnerability VCID-yvgm-nrme-tfgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.44-1%3Fdistro=trixie
5
url pkg:deb/debian/python-git@3.1.50-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.50-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.50-1%3Fdistro=trixie
aliases CVE-2023-40267, GHSA-pr76-5cm5-w9cj, PYSEC-2023-137
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v1x7-st14-rfc1
6
url VCID-vuj4-7vfk-9fhy
vulnerability_id VCID-vuj4-7vfk-9fhy
summary GitPython is a python library used to interact with Git repositories. There is an incomplete fix for CVE-2023-40590. On Windows, GitPython uses an untrusted search path if it uses a shell to run `git`, as well as when it runs `bash.exe` to interpret hooks. If either of those features are used on Windows, a malicious `git.exe` or `bash.exe` may be run from an untrusted repository. This issue has been patched in version 3.1.41.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-22190
reference_id
reference_type
scores
0
value 0.00353
scoring_system epss
scoring_elements 0.58097
published_at 2026-06-11T12:55:00Z
1
value 0.00353
scoring_system epss
scoring_elements 0.5821
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-22190
1
reference_url https://github.com/gitpython-developers/GitPython
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython
2
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/gitpython/PYSEC-2024-4.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/gitpython/PYSEC-2024-4.yaml
3
reference_url https://github.com/gitpython-developers/GitPython/pull/1792
reference_id 1792
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-25T18:06:43Z/
url https://github.com/gitpython-developers/GitPython/pull/1792
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-22190
reference_id CVE-2024-22190
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-22190
5
reference_url https://github.com/gitpython-developers/GitPython/commit/ef3192cc414f2fd9978908454f6fd95243784c7f
reference_id ef3192cc414f2fd9978908454f6fd95243784c7f
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-25T18:06:43Z/
url https://github.com/gitpython-developers/GitPython/commit/ef3192cc414f2fd9978908454f6fd95243784c7f
6
reference_url https://github.com/advisories/GHSA-2mqj-m65w-jghx
reference_id GHSA-2mqj-m65w-jghx
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-2mqj-m65w-jghx
7
reference_url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-2mqj-m65w-jghx
reference_id GHSA-2mqj-m65w-jghx
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value 8.6
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
3
value HIGH
scoring_system generic_textual
scoring_elements
4
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-03-25T18:06:43Z/
url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-2mqj-m65w-jghx
fixed_packages
0
url pkg:deb/debian/python-git@0?distro=trixie
purl pkg:deb/debian/python-git@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@0%3Fdistro=trixie
1
url pkg:deb/debian/python-git@3.1.14-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.14-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z23-b3zg-wuh5
1
vulnerability VCID-fp8f-ckcg-47a1
2
vulnerability VCID-hph8-mnnk-v7ft
3
vulnerability VCID-yvgm-nrme-tfgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.14-1%3Fdistro=trixie
2
url pkg:deb/debian/python-git@3.1.30-1%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/python-git@3.1.30-1%2Bdeb12u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z23-b3zg-wuh5
1
vulnerability VCID-fp8f-ckcg-47a1
2
vulnerability VCID-hph8-mnnk-v7ft
3
vulnerability VCID-yvgm-nrme-tfgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.30-1%252Bdeb12u2%3Fdistro=trixie
3
url pkg:deb/debian/python-git@3.1.44-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.44-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z23-b3zg-wuh5
1
vulnerability VCID-fp8f-ckcg-47a1
2
vulnerability VCID-hph8-mnnk-v7ft
3
vulnerability VCID-yvgm-nrme-tfgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.44-1%3Fdistro=trixie
4
url pkg:deb/debian/python-git@3.1.50-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.50-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.50-1%3Fdistro=trixie
aliases CVE-2024-22190, GHSA-2mqj-m65w-jghx, PYSEC-2024-4
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vuj4-7vfk-9fhy
7
url VCID-yvgm-nrme-tfgp
vulnerability_id VCID-yvgm-nrme-tfgp
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-42284
reference_id
reference_type
scores
0
value 0.00022
scoring_system epss
scoring_elements 0.06581
published_at 2026-06-11T12:55:00Z
1
value 0.00022
scoring_system epss
scoring_elements 0.06604
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-42284
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42284
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42284
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/gitpython-developers/GitPython
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-42284
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-42284
5
reference_url https://www.tenable.com/cve/CVE-2026-32686
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.tenable.com/cve/CVE-2026-32686
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1135350
reference_id 1135350
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1135350
7
reference_url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.47
reference_id 3.1.47
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-05-08T22:50:46Z/
url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.47
8
reference_url https://github.com/advisories/GHSA-x2qx-6953-8485
reference_id GHSA-x2qx-6953-8485
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-x2qx-6953-8485
9
reference_url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-x2qx-6953-8485
reference_id GHSA-x2qx-6953-8485
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-05-08T22:50:46Z/
url https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-x2qx-6953-8485
10
reference_url https://usn.ubuntu.com/8303-1/
reference_id USN-8303-1
reference_type
scores
url https://usn.ubuntu.com/8303-1/
fixed_packages
0
url pkg:deb/debian/python-git@3.1.50-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.50-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.50-1%3Fdistro=trixie
aliases CVE-2026-42284, GHSA-x2qx-6953-8485
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yvgm-nrme-tfgp
8
url VCID-z2pz-21y4-5khp
vulnerability_id VCID-z2pz-21y4-5khp
summary
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-24439.json
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-24439.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-24439
reference_id
reference_type
scores
0
value 0.68859
scoring_system epss
scoring_elements 0.98649
published_at 2026-06-11T12:55:00Z
1
value 0.68859
scoring_system epss
scoring_elements 0.98654
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-24439
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24439
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24439
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/gitpython-developers/GitPython
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython
5
reference_url https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py%23L1249
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py%23L1249
6
reference_url https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py#L1249
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py#L1249
7
reference_url https://github.com/gitpython-developers/GitPython/commit/2625ed9fc074091c531c27ffcba7902771130261
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython/commit/2625ed9fc074091c531c27ffcba7902771130261
8
reference_url https://github.com/gitpython-developers/GitPython/issues/1515
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython/issues/1515
9
reference_url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.30
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/gitpython-developers/GitPython/releases/tag/3.1.30
10
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/gitpython/PYSEC-2022-42992.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/gitpython/PYSEC-2022-42992.yaml
11
reference_url https://lists.debian.org/debian-lts-announce/2023/07/msg00024.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2023/07/msg00024.html
12
reference_url https://lists.debian.org/debian-lts-announce/2024/10/msg00030.html
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2024/10/msg00030.html
13
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH
14
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN
15
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R
16
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X
17
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH
18
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN
19
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN/
20
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R
21
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X
22
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X/
23
reference_url https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858
24
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027163
reference_id 1027163
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027163
25
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2151583
reference_id 2151583
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2151583
26
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-24439
reference_id CVE-2022-24439
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2022-24439
27
reference_url https://github.com/advisories/GHSA-hcpj-qp55-gfph
reference_id GHSA-hcpj-qp55-gfph
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-hcpj-qp55-gfph
28
reference_url https://security.gentoo.org/glsa/202311-01
reference_id GLSA-202311-01
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://security.gentoo.org/glsa/202311-01
29
reference_url https://access.redhat.com/errata/RHSA-2023:5931
reference_id RHSA-2023:5931
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:5931
30
reference_url https://usn.ubuntu.com/5968-1/
reference_id USN-5968-1
reference_type
scores
url https://usn.ubuntu.com/5968-1/
fixed_packages
0
url pkg:deb/debian/python-git@3.1.14-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.14-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z23-b3zg-wuh5
1
vulnerability VCID-fp8f-ckcg-47a1
2
vulnerability VCID-hph8-mnnk-v7ft
3
vulnerability VCID-yvgm-nrme-tfgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.14-1%3Fdistro=trixie
1
url pkg:deb/debian/python-git@3.1.14-1%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/python-git@3.1.14-1%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.14-1%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/python-git@3.1.30-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.30-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.30-1%3Fdistro=trixie
3
url pkg:deb/debian/python-git@3.1.30-1%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/python-git@3.1.30-1%2Bdeb12u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z23-b3zg-wuh5
1
vulnerability VCID-fp8f-ckcg-47a1
2
vulnerability VCID-hph8-mnnk-v7ft
3
vulnerability VCID-yvgm-nrme-tfgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.30-1%252Bdeb12u2%3Fdistro=trixie
4
url pkg:deb/debian/python-git@3.1.44-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.44-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z23-b3zg-wuh5
1
vulnerability VCID-fp8f-ckcg-47a1
2
vulnerability VCID-hph8-mnnk-v7ft
3
vulnerability VCID-yvgm-nrme-tfgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.44-1%3Fdistro=trixie
5
url pkg:deb/debian/python-git@3.1.50-1?distro=trixie
purl pkg:deb/debian/python-git@3.1.50-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.50-1%3Fdistro=trixie
aliases CVE-2022-24439, GHSA-hcpj-qp55-gfph, PYSEC-2022-42992
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z2pz-21y4-5khp
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/python-git@3.1.50-1%3Fdistro=trixie