CVE-2025-68144

CVSS v4.0

6.3

Vector

AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:N/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Name of the Vulnerable Software and Affected Versions mcp-server-git versions prior to 2025.12.17

Description The

git diff

and

git checkout

functions in mcp-server-git did not properly sanitize user-supplied arguments before passing them to git CLI commands. Specifically, flag-like values, such as

--output=/path/to/file

used with

git diff

, were treated as command-line options instead of git references, potentially allowing arbitrary file overwrites. The fix introduces validation to reject arguments beginning with '-' and verifies that arguments resolve to valid git references using

rev parse

before execution.

Recommendations Update to version 2025.12.17 to resolve this issue.

Fix

Argument Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-88

Related Identifiers

CVE-2025-68144

Affected Products

Git-Mcp-Server

CVE-2025-68144

Weakness Enumeration

Related Identifiers

Affected Products

References · 11