CyberSec.Space Logo
Back to CVE Browser

CVE-2015-7082

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1300%
EPSS Percentile21.18th
PublishedDec 11, 2015
Last ModifiedMay 6, 2026

Vulnerability Description

Multiple unspecified vulnerabilities in Git before 2.5.4, as used in Apple Xcode before 7.2, have unknown impact and attack vectors. NOTE: this CVE is associated only with Xcode use cases.

Affected Platforms (CPE)

πŸ“¦
Git Project

Git

<= 2.5.3

References & Advisories

πŸ”— http://lists.apple.com/archives/security-announce/2015/Dec/msg00004.html
πŸ”— http://www.securitytracker.com/id/1034340
πŸ”— https://github.com/git/git/blob/master/Documentation/RelNotes/2.5.4.txt
πŸ”— https://support.apple.com/HT205642
πŸ”— http://lists.apple.com/archives/security-announce/2015/Dec/msg00004.html
πŸ”— http://www.securitytracker.com/id/1034340
πŸ”— https://github.com/git/git/blob/master/Documentation/RelNotes/2.5.4.txt
πŸ”— https://support.apple.com/HT205642

Related Vulnerabilities

CVE-2015-085010.0

The Git plugin for FusionForge before 6.0rc4 allows remote attackers to execute arbitrary code via an unspecified parameter when c...

CVE-2021-3263710.0

Authelia is a a single sign-on multi-factor portal for web apps. This affects uses who are using nginx ngx_http_auth_request_modul...

CVE-2018-37859.8

A command injection in git-dummy-commit v1.3.0 allows os level commands to be executed due to an unescaped parameter.

CVE-2017-150419.8

Go before 1.8.4 and 1.9.x before 1.9.1 allows "go get" remote command execution. Using custom domains, it is possible to arrange t...