{"url":"http://public2.vulnerablecode.io/api/packages/89788?format=json","purl":"pkg:rpm/redhat/git@2.47.3-1?arch=el10_0","type":"rpm","namespace":"redhat","name":"git","version":"2.47.3-1","qualifiers":{"arch":"el10_0"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/72113?format=json","vulnerability_id":"VCID-22kd-bt99-rqb1","summary":"git: Git does not sanitize URLs when asking for credentials interactively","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-50349.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-50349.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-50349","reference_id":"","reference_type":"","scores":[{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78519","published_at":"2026-05-05T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78427","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78455","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78454","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78449","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78483","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.7849","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78505","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.7838","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78411","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78394","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78421","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78426","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78452","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01141","scoring_system":"epss","scoring_elements":"0.78435","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-50349"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50349","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50349"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1093042","reference_id":"1093042","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1093042"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337824","reference_id":"2337824","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337824"},{"reference_url":"https://github.com/git/git/commit/7725b8100ffbbff2750ee4d61a0fcc1f53a086e8","reference_id":"7725b8100ffbbff2750ee4d61a0fcc1f53a086e8","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-14T19:22:40Z/"}],"url":"https://github.com/git/git/commit/7725b8100ffbbff2750ee4d61a0fcc1f53a086e8"},{"reference_url":"https://github.com/git/git/commit/c903985bf7e772e2d08275c1a95c8a55ab011577","reference_id":"c903985bf7e772e2d08275c1a95c8a55ab011577","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-14T19:22:40Z/"}],"url":"https://github.com/git/git/commit/c903985bf7e772e2d08275c1a95c8a55ab011577"},{"reference_url":"https://github.com/git/git/security/advisories/GHSA-hmg8-h7qf-7cxr","reference_id":"GHSA-hmg8-h7qf-7cxr","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-14T19:22:40Z/"}],"url":"https://github.com/git/git/security/advisories/GHSA-hmg8-h7qf-7cxr"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11462","reference_id":"RHSA-2025:11462","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11462"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11533","reference_id":"RHSA-2025:11533","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11533"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11534","reference_id":"RHSA-2025:11534","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11534"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19601","reference_id":"RHSA-2025:19601","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:19601"},{"reference_url":"https://usn.ubuntu.com/7207-1/","reference_id":"USN-7207-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7207-1/"},{"reference_url":"https://usn.ubuntu.com/7207-2/","reference_id":"USN-7207-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7207-2/"},{"reference_url":"https://usn.ubuntu.com/7964-1/","reference_id":"USN-7964-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7964-1/"}],"fixed_packages":[],"aliases":["CVE-2024-50349"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-22kd-bt99-rqb1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/51216?format=json","vulnerability_id":"VCID-2639-78xt-z7d3","summary":"Multiple vulnerabilities have been discovered in Git, the worst of which could lead to arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-46835.json","reference_id":"","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-46835.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-46835","reference_id":"","reference_type":"","scores":[{"value":"0.0001","scoring_system":"epss","scoring_elements":"0.0108","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0001","scoring_system":"epss","scoring_elements":"0.01077","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01432","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01322","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01414","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01423","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01434","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01441","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01343","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01348","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01337","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01331","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01333","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-46835"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46835","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46835"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108983","reference_id":"1108983","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108983"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2379326","reference_id":"2379326","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2379326"},{"reference_url":"https://github.com/j6t/git-gui/compare/dcda716dbc9c90bcac4611bd1076747671ee0906..a437f5bc93330a70b42a230e52f3bd036ca1b1da","reference_id":"dcda716dbc9c90bcac4611bd1076747671ee0906..a437f5bc93330a70b42a230e52f3bd036ca1b1da","reference_type":"","scores":[{"value":"8.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-10T15:53:11Z/"}],"url":"https://github.com/j6t/git-gui/compare/dcda716dbc9c90bcac4611bd1076747671ee0906..a437f5bc93330a70b42a230e52f3bd036ca1b1da"},{"reference_url":"https://github.com/j6t/git-gui/security/advisories/GHSA-xfx7-68v4-v8fg","reference_id":"GHSA-xfx7-68v4-v8fg","reference_type":"","scores":[{"value":"8.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-10T15:53:11Z/"}],"url":"https://github.com/j6t/git-gui/security/advisories/GHSA-xfx7-68v4-v8fg"},{"reference_url":"https://security.gentoo.org/glsa/202507-09","reference_id":"GLSA-202507-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202507-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11462","reference_id":"RHSA-2025:11462","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11462"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11533","reference_id":"RHSA-2025:11533","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11533"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11534","reference_id":"RHSA-2025:11534","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11534"},{"reference_url":"https://usn.ubuntu.com/7626-1/","reference_id":"USN-7626-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7626-1/"}],"fixed_packages":[],"aliases":["CVE-2025-46835"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2639-78xt-z7d3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/51217?format=json","vulnerability_id":"VCID-44s3-56w5-jqhy","summary":"Multiple vulnerabilities have been discovered in Git, the worst of which could lead to arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48384.json","reference_id":"","reference_type":"","scores":[{"value":"8.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48384.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-48384","reference_id":"","reference_type":"","scores":[{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.64639","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.64705","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.647","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.6472","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.64732","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.64729","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.64667","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.64625","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.64673","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.64689","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.64694","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.64666","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.64701","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00472","scoring_system":"epss","scoring_elements":"0.64713","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00624","scoring_system":"epss","scoring_elements":"0.70217","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-48384"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108983","reference_id":"1108983","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108983"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2378806","reference_id":"2378806","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2378806"},{"reference_url":"https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9","reference_id":"GHSA-vwqx-4fm8-6qc9","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H"},{"value":"Attend","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-08-26T03:55:23Z/"}],"url":"https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"},{"reference_url":"https://security.gentoo.org/glsa/202507-09","reference_id":"GLSA-202507-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202507-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11462","reference_id":"RHSA-2025:11462","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11462"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11533","reference_id":"RHSA-2025:11533","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11533"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11534","reference_id":"RHSA-2025:11534","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11534"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11686","reference_id":"RHSA-2025:11686","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11686"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11688","reference_id":"RHSA-2025:11688","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11688"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11793","reference_id":"RHSA-2025:11793","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11793"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11794","reference_id":"RHSA-2025:11794","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11794"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11795","reference_id":"RHSA-2025:11795","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11795"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11796","reference_id":"RHSA-2025:11796","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11796"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11800","reference_id":"RHSA-2025:11800","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11800"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11801","reference_id":"RHSA-2025:11801","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11801"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:13276","reference_id":"RHSA-2025:13276","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:13276"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:13325","reference_id":"RHSA-2025:13325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:13325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:13933","reference_id":"RHSA-2025:13933","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:13933"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:14059","reference_id":"RHSA-2025:14059","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:14059"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:14396","reference_id":"RHSA-2025:14396","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:14396"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:14853","reference_id":"RHSA-2025:14853","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:14853"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:14858","reference_id":"RHSA-2025:14858","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:14858"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15308","reference_id":"RHSA-2025:15308","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15308"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15672","reference_id":"RHSA-2025:15672","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15672"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15827","reference_id":"RHSA-2025:15827","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15827"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15828","reference_id":"RHSA-2025:15828","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15828"},{"reference_url":"https://usn.ubuntu.com/7626-1/","reference_id":"USN-7626-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7626-1/"}],"fixed_packages":[],"aliases":["CVE-2025-48384"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"7.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-44s3-56w5-jqhy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/51214?format=json","vulnerability_id":"VCID-45wh-upym-1yaw","summary":"Multiple vulnerabilities have been discovered in Git, the worst of which could lead to arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27614.json","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27614.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27614","reference_id":"","reference_type":"","scores":[{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00684","published_at":"2026-04-02T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00833","published_at":"2026-05-05T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.0078","published_at":"2026-04-16T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00827","published_at":"2026-04-21T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.0083","published_at":"2026-04-24T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00836","published_at":"2026-04-26T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00832","published_at":"2026-04-29T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00677","published_at":"2026-04-04T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00794","published_at":"2026-04-08T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00789","published_at":"2026-04-09T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00784","published_at":"2026-04-18T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00778","published_at":"2026-04-12T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00779","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27614"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108983","reference_id":"1108983","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108983"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2379125","reference_id":"2379125","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2379125"},{"reference_url":"https://github.com/j6t/gitk/commit/8e3070aa5e331be45d4d03e3be41f84494fce129","reference_id":"8e3070aa5e331be45d4d03e3be41f84494fce129","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-10T15:54:41Z/"}],"url":"https://github.com/j6t/gitk/commit/8e3070aa5e331be45d4d03e3be41f84494fce129"},{"reference_url":"https://github.com/j6t/gitk/security/advisories/GHSA-g4v5-fjv9-mhhc","reference_id":"GHSA-g4v5-fjv9-mhhc","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-10T15:54:41Z/"}],"url":"https://github.com/j6t/gitk/security/advisories/GHSA-g4v5-fjv9-mhhc"},{"reference_url":"https://security.gentoo.org/glsa/202507-09","reference_id":"GLSA-202507-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202507-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11462","reference_id":"RHSA-2025:11462","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11462"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11533","reference_id":"RHSA-2025:11533","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11533"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11534","reference_id":"RHSA-2025:11534","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11534"},{"reference_url":"https://usn.ubuntu.com/7626-1/","reference_id":"USN-7626-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7626-1/"}],"fixed_packages":[],"aliases":["CVE-2025-27614"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-45wh-upym-1yaw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/51218?format=json","vulnerability_id":"VCID-9v77-vh5p-97e1","summary":"Multiple vulnerabilities have been discovered in Git, the worst of which could lead to arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48385.json","reference_id":"","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48385.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-48385","reference_id":"","reference_type":"","scores":[{"value":"0.00056","scoring_system":"epss","scoring_elements":"0.17645","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00057","scoring_system":"epss","scoring_elements":"0.17781","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00057","scoring_system":"epss","scoring_elements":"0.17744","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19407","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19411","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19559","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19276","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19354","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19269","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19077","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19066","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19021","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19364","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19307","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00174","scoring_system":"epss","scoring_elements":"0.38393","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-48385"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108983","reference_id":"1108983","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108983"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2378808","reference_id":"2378808","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2378808"},{"reference_url":"https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655","reference_id":"GHSA-m98c-vgpc-9655","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-07-08T18:38:28Z/"}],"url":"https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"},{"reference_url":"https://security.gentoo.org/glsa/202507-09","reference_id":"GLSA-202507-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202507-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11462","reference_id":"RHSA-2025:11462","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11462"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11533","reference_id":"RHSA-2025:11533","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11533"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11534","reference_id":"RHSA-2025:11534","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11534"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11686","reference_id":"RHSA-2025:11686","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11686"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11794","reference_id":"RHSA-2025:11794","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11794"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11795","reference_id":"RHSA-2025:11795","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11795"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:13276","reference_id":"RHSA-2025:13276","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:13276"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:13325","reference_id":"RHSA-2025:13325","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:13325"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:13933","reference_id":"RHSA-2025:13933","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:13933"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:14059","reference_id":"RHSA-2025:14059","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:14059"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:14396","reference_id":"RHSA-2025:14396","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:14396"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:14853","reference_id":"RHSA-2025:14853","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:14853"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:14858","reference_id":"RHSA-2025:14858","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:14858"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15672","reference_id":"RHSA-2025:15672","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15672"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15827","reference_id":"RHSA-2025:15827","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15827"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15828","reference_id":"RHSA-2025:15828","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15828"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:15847","reference_id":"RHSA-2025:15847","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:15847"},{"reference_url":"https://usn.ubuntu.com/7626-1/","reference_id":"USN-7626-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7626-1/"}],"fixed_packages":[],"aliases":["CVE-2025-48385"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9v77-vh5p-97e1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/72114?format=json","vulnerability_id":"VCID-wgzc-r8rd-t3dx","summary":"git: Newline confusion in credential helpers can lead to credential exfiltration in git","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-52006.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-52006.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-52006","reference_id":"","reference_type":"","scores":[{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77227","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77259","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77267","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77295","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77274","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77272","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77311","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77303","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77337","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77343","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77355","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77216","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01025","scoring_system":"epss","scoring_elements":"0.77245","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01291","scoring_system":"epss","scoring_elements":"0.79762","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-52006"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52006","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52006"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1093042","reference_id":"1093042","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1093042"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337956","reference_id":"2337956","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2337956"},{"reference_url":"https://github.com/git/git/commit/b01b9b81d36759cdcd07305e78765199e1bc2060","reference_id":"b01b9b81d36759cdcd07305e78765199e1bc2060","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-14T18:52:03Z/"}],"url":"https://github.com/git/git/commit/b01b9b81d36759cdcd07305e78765199e1bc2060"},{"reference_url":"https://github.com/git/git/security/advisories/GHSA-qm7j-c969-7j4q","reference_id":"GHSA-qm7j-c969-7j4q","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-14T18:52:03Z/"}],"url":"https://github.com/git/git/security/advisories/GHSA-qm7j-c969-7j4q"},{"reference_url":"https://github.com/git/git/security/advisories/GHSA-r5ph-xg7q-xfrp","reference_id":"GHSA-r5ph-xg7q-xfrp","reference_type":"","scores":[{"value":"2.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-14T18:52:03Z/"}],"url":"https://github.com/git/git/security/advisories/GHSA-r5ph-xg7q-xfrp"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11462","reference_id":"RHSA-2025:11462","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11462"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11533","reference_id":"RHSA-2025:11533","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11533"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11534","reference_id":"RHSA-2025:11534","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11534"},{"reference_url":"https://usn.ubuntu.com/7207-1/","reference_id":"USN-7207-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7207-1/"},{"reference_url":"https://usn.ubuntu.com/7207-2/","reference_id":"USN-7207-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7207-2/"},{"reference_url":"https://usn.ubuntu.com/7964-1/","reference_id":"USN-7964-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7964-1/"}],"fixed_packages":[],"aliases":["CVE-2024-52006"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wgzc-r8rd-t3dx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/51213?format=json","vulnerability_id":"VCID-x8he-nt8f-57fk","summary":"Multiple vulnerabilities have been discovered in Git, the worst of which could lead to arbitrary code execution.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27613.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27613.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27613","reference_id":"","reference_type":"","scores":[{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01442","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.0144","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02009","published_at":"2026-05-05T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.01977","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.01957","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.01959","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02041","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02025","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.0203","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02059","published_at":"2026-04-29T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.01995","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.01997","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02013","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.01998","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.01982","published_at":"2026-04-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-27613"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27613","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27613"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108983","reference_id":"1108983","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108983"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2379124","reference_id":"2379124","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2379124"},{"reference_url":"https://github.com/j6t/gitk/compare/465f03869ae11acd04abfa1b83c67879c867410c..026c397d911cde55924d7eb1311d0fd6e2e105d5","reference_id":"465f03869ae11acd04abfa1b83c67879c867410c..026c397d911cde55924d7eb1311d0fd6e2e105d5","reference_type":"","scores":[{"value":"3.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-10T15:55:29Z/"}],"url":"https://github.com/j6t/gitk/compare/465f03869ae11acd04abfa1b83c67879c867410c..026c397d911cde55924d7eb1311d0fd6e2e105d5"},{"reference_url":"https://github.com/j6t/gitk/compare/7dd272eca153058da2e8d5b9960bbbf0b4f0cbaa..67a128b91e25978a15f9f7e194d81b441d603652","reference_id":"7dd272eca153058da2e8d5b9960bbbf0b4f0cbaa..67a128b91e25978a15f9f7e194d81b441d603652","reference_type":"","scores":[{"value":"3.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-10T15:55:29Z/"}],"url":"https://github.com/j6t/gitk/compare/7dd272eca153058da2e8d5b9960bbbf0b4f0cbaa..67a128b91e25978a15f9f7e194d81b441d603652"},{"reference_url":"https://github.com/j6t/gitk/security/advisories/GHSA-f3cw-xrj3-wr2v","reference_id":"GHSA-f3cw-xrj3-wr2v","reference_type":"","scores":[{"value":"3.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-10T15:55:29Z/"}],"url":"https://github.com/j6t/gitk/security/advisories/GHSA-f3cw-xrj3-wr2v"},{"reference_url":"https://security.gentoo.org/glsa/202507-09","reference_id":"GLSA-202507-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202507-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11462","reference_id":"RHSA-2025:11462","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11462"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11533","reference_id":"RHSA-2025:11533","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11533"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:11534","reference_id":"RHSA-2025:11534","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:11534"},{"reference_url":"https://usn.ubuntu.com/7626-1/","reference_id":"USN-7626-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7626-1/"}],"fixed_packages":[],"aliases":["CVE-2025-27613"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x8he-nt8f-57fk"}],"fixing_vulnerabilities":[],"risk_score":"10.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/git@2.47.3-1%3Farch=el10_0"}