CVE-2023-53158
MEDIUMgix-transport < 0.36.1 - OS Command Injection via SSH URL ProxyCommand Parameter
Title source: llmDescription
The gix-transport crate before 0.36.1 for Rust allows command execution via the "gix clone 'ssh://-oProxyCommand=open$IFS" substring. NOTE: this was discovered before CVE-2024-32884, a similar vulnerability (involving a username field) that is more difficult to exploit.
References (4)
Core 4
Core References
Various Sources
https://rustsec.org/advisories/RUSTSEC-2023-0064.html
Various Sources
https://crates.io/crates/gix-transport
Various Sources
https://github.com/advisories/GHSA-rrjw-j4m2-mf34
Issue Tracking
https://github.com/GitoxideLabs/gitoxide/pull/1032
Scores
CVSS v3
4.1
EPSS
0.0016
EPSS Percentile
5.9%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-78
Status
published
Products (2)
crates.io/gix-transport
0 - 0.36.1crates.io
GitoxideLabs/gix-transport
< 0.36.1
Published
Jul 28, 2025
Tracked Since
Feb 18, 2026