DevGuard Logo

🛡️ DevGuard
Group
/🧩 DevGuard Action
Repository

Overview
Compliance
Artifacts
Code Risks
Dependency Risks
License Risks
Dependencies

CVE-2025-46835

Git GUI allows you to use the Git source control management tools via a GUI. When a user clones an untrusted repository and is tricked into editing a file located in a maliciously named directory in the repository, then Git GUI can create and overwrite files for which the user has write permission. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.

Open
LOW (4.0)
  • logo

    System detected CVE-2025-46835

    0.12.0
  • logo

    System detected CVE-2025-46835

    attest
  • logo

    System detected CVE-2025-46835

    attesting
  • logo

    System updated the risk assessment from 0 to 3.95

    0.12.0

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 0 to 3.95

    attest

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 0 to 3.95

    attesting

    System recalculated raw risk assessment

  • logo

    System fixed CVE-2025-46835

    0.12.0
  • logo

    System fixed CVE-2025-46835

    attesting
  • logo

    System fixed CVE-2025-46835

    attest
  • logo

    System detected CVE-2025-46835 with a risk of 3.95

    0.12.0

Add a comment

Mark as False Positive
Last calculated at:

Affected component

debian/git

Installed version:
2.39.5-0
Fixed in:
no patch available
Show in dependency graph

Management decisions across the organization

GitHubImprintTerms of UsePrivacy
Copyright © 2025 L3montree GmbH and the DevGuard Contributors. All rights reserved. Version 2ab7b793efd72421aea8c3a994ac60202bf1b3a5