Unknown · Simple-Git · CVE-2022-25860
**Name of the Vulnerable Software and Affected Versions**
simple-git versions prior to 3.16.0
**Description**
The issue is related to Remote Code Execution (RCE) due to improper input sanitization in the `clone()`, `pull()`, `push()`, and `listRemote()` methods. This vulnerability exists because of an incomplete fix of a previous issue.
**Recommendations**
For versions prior to 3.16.0, update to version 3.16.0 or later to resolve the issue. As a temporary workaround, consider restricting the use of the `clone()`, `pull()`, `push()`, and `listRemote()` methods until the update is applied.