Skip to main content

CSA will never ask you to transfer money or disclose banking details. Stay vigilant.

If unsure, call the 24/7 ScamShield Helpline at 1799 to check. www.scamshield.gov.sg

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. Critical Vulnerability in Git
Alerts

Critical Vulnerability in Git

24 May 2024

Security updates have been released to address a critical vulnerability (CVE-2024-32002) affecting Git. The vulnerability has a Common Vulnerability Scoring System (CVSSv3.1) score of 9.1 out of 10.

Successful exploitation of the vulnerability could allow an attacker to execute arbitrary code when a victim unknowingly clones a malicious repository to access the files and code within. This could result in remote code execution.

The vulnerability affects all versions of Git prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.

Users and administrators of affected versions of Git are advised to update to the latest version immediately.

More information is available here:

https://github.com/git/git/security/advisories/GHSA-8h77-4q3w-gfgv

Back to top