CVE-2014-9938
HIGHGit < 1.9.3 - Remote Code Execution via Unsanitized Branch Name in PS1 Variable
Title source: llmDescription
contrib/completion/git-prompt.sh in Git before 1.9.3 does not sanitize branch names in the PS1 variable, allowing a malicious repository to cause code execution.
References (3)
Core 3
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/njhartwell/pw3nage
Patch, Third Party Advisory x_refsource_confirm
https://github.com/git/git/commit/8976500cbbb13270398d3b3e07a17b8cc7bff43f
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:2004
Scores
CVSS v3
8.8
EPSS
0.0232
EPSS Percentile
81.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-116
Status
published
Products (1)
git-scm/git
< 1.9.3
Published
Mar 20, 2017
Tracked Since
Feb 18, 2026