CVE-2025-68144

CVSS v4.0

6.3

Vector

AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:N/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Name of the Vulnerable Software and Affected Versions mcp-server-git versions prior to 2025.12.17

Description The

git diff

and

git checkout

functions in mcp-server-git did not properly sanitize user-controlled arguments before passing them to git CLI commands. Specifically, flag-like values, such as

--output=/path/to/file

for

git diff

, were treated as command-line options instead of git references, potentially allowing arbitrary file overwrites. The issue is addressed by adding validation to reject arguments starting with - and verifying that the argument resolves to a valid git ref using

rev parse

before execution.

Recommendations Update to version 2025.12.17 to resolve this issue.

Fix

Argument Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-88

Related Identifiers

CVE-2025-68144

Affected Products

Git-Mcp-Server

CVE-2025-68144

Weakness Enumeration

Related Identifiers

Affected Products

References · 6