PT-2020-16362 · Microsoft · Git Credential Manager

Vitor Fernandes

Published

2020-12-08

Updated

2021-02-18

CVE-2020-26233

CVSS v3.1

7.3

High

Vector

AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Git Credential Manager Core versions prior to 2.0.289

Description The issue arises when recursively cloning a Git repository on Windows with submodules. If a malicious git.exe executable is present in the top-level repository, it will be started by Git Credential Manager Core when attempting to read configuration, instead of the git.exe found on the %PATH%. This only affects Git Credential Manager Core on Windows, not on macOS or Linux-based distributions.

Recommendations For versions prior to 2.0.289, update to version 2.0.289 or later to resolve the issue. As a temporary workaround, avoid recursively cloning untrusted repositories with the --recurse-submodules option.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-706

Related Identifiers

CVE-2020-26233

GHSA-2GQ7-WW4J-3M76

Affected Products

Git Credential Manager

PT-2020-16362 · Microsoft · Git Credential Manager

CVE-2020-26233

Weakness Enumeration

Related Identifiers

Affected Products

References · 8