Vulnerability Description
git-fastclone before 1.0.1 permits arbitrary shell command execution from .gitmodules. If an attacker can instruct a user to run a recursive clone from a repository they control, they can get a client to run an arbitrary shell command. Alternately, if an attacker can MITM an unencrypted git clone, they could exploit this. The ext command will be run if the repository is recursively cloned or if submodules are updated. This attack works when cloning both local and remote repositories.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Squareup | Git-Fastclone | < 1.0.1 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/81433Third Party AdvisoryVDB Entry
- https://github.com/square/git-fastclone/pull/2PatchVendor Advisory
- https://hackerone.com/reports/104465ExploitThird Party Advisory
- http://www.securityfocus.com/bid/81433Third Party AdvisoryVDB Entry
- https://github.com/square/git-fastclone/pull/2PatchVendor Advisory
- https://hackerone.com/reports/104465ExploitThird Party Advisory
FAQ
What is CVE-2015-8968?
CVE-2015-8968 is a vulnerability with a CVSS score of 8.8 (HIGH). git-fastclone before 1.0.1 permits arbitrary shell command execution from .gitmodules. If an attacker can instruct a user to run a recursive clone from a repository they control, they can get a client...
How severe is CVE-2015-8968?
CVE-2015-8968 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-8968?
Check the references section above for vendor advisories and patch information. Affected products include: Squareup Git-Fastclone.