vulnerability

Huawei EulerOS: CVE-2025-46835: git security update

Try Surface Command

Back to search

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:P)

Published

Oct 23, 2025

Added

Oct 24, 2025

Modified

Apr 1, 2026

Description

Git GUI allows you to use the Git source control management tools via a GUI. When a user clones an untrusted repository and is tricked into editing a file located in a maliciously named directory in the repository, then Git GUI can create and overwrite files for which the user has write permission. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.

Solutions

huawei-euleros-2_0_sp13-upgrade-githuawei-euleros-2_0_sp13-upgrade-git-corehuawei-euleros-2_0_sp13-upgrade-git-helphuawei-euleros-2_0_sp13-upgrade-perl-git

References

CVE-2025-46835
https://attackerkb.com/topics/CVE-2025-46835
CWE-88
EULEROS-EulerOS-SA-2025-2288
EUVD-EUVD-2025-21002
https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-21002

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report