module
Git Remote Code Execution via git-lfs (CVE-2020-27955)
| Disclosed |
|---|
| Nov 4, 2020 |
Disclosed
Nov 4, 2020
Description
A critical vulnerability (CVE-2020-27955) in Git Large File Storage (Git LFS), an open source Git extension for
versioning large files, allows attackers to achieve remote code execution if the Windows-using victim is tricked
into cloning the attacker's malicious repository using a vulnerable Git version control tool
versioning large files, allows attackers to achieve remote code execution if the Windows-using victim is tricked
into cloning the attacker's malicious repository using a vulnerable Git version control tool
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.