{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-27614", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2025-03-03T15:10:34.080Z", "datePublished": "2025-07-10T15:02:25.947Z", "dateUpdated": "2025-07-10T15:54:47.537Z"}, "containers": {"cna": {"title": "Gitk allows arbitrary command execution", "problemTypes": [{"descriptions": [{"cweId": "CWE-78", "lang": "en", "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/j6t/gitk/security/advisories/GHSA-g4v5-fjv9-mhhc", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/j6t/gitk/security/advisories/GHSA-g4v5-fjv9-mhhc"}, {"name": "https://github.com/j6t/gitk/commit/8e3070aa5e331be45d4d03e3be41f84494fce129", "tags": ["x_refsource_MISC"], "url": "https://github.com/j6t/gitk/commit/8e3070aa5e331be45d4d03e3be41f84494fce129"}], "affected": [{"vendor": "j6t", "product": "gitk", "versions": [{"version": ">= 2.41.0, < 2.43.7", "status": "affected"}, {"version": ">= 2.44.0, < 2.44.4", "status": "affected"}, {"version": ">= 2.45.0, < 2.45.4", "status": "affected"}, {"version": ">= 2.46.0, < 2.46.4", "status": "affected"}, {"version": ">= 2.47.0, < 2.47.3", "status": "affected"}, {"version": ">= 2.48.0, < 2.48.2", "status": "affected"}, {"version": ">= 2.49.0, < 2.49.1", "status": "affected"}, {"version": ">= 2.50.0, < 2.50.1", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2025-07-10T15:02:25.947Z"}, "descriptions": [{"lang": "en", "value": "Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script (e.g., Bourne shell, Perl, Python, ...) supplied by the attacker by invoking gitk filename, where filename has a particular structure. The script is run with the privileges of the user. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50."}], "source": {"advisory": "GHSA-g4v5-fjv9-mhhc", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-07-10T15:54:41.814461Z", "id": "CVE-2025-27614", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-10T15:54:47.537Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-27614", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-07-10T15:54:41.814461Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-10T15:54:44.964Z"}}], "cna": {"title": "Gitk allows arbitrary command execution", "source": {"advisory": "GHSA-g4v5-fjv9-mhhc", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "j6t", "product": "gitk", "versions": [{"status": "affected", "version": ">= 2.41.0, < 2.43.7"}, {"status": "affected", "version": ">= 2.44.0, < 2.44.4"}, {"status": "affected", "version": ">= 2.45.0, < 2.45.4"}, {"status": "affected", "version": ">= 2.46.0, < 2.46.4"}, {"status": "affected", "version": ">= 2.47.0, < 2.47.3"}, {"status": "affected", "version": ">= 2.48.0, < 2.48.2"}, {"status": "affected", "version": ">= 2.49.0, < 2.49.1"}, {"status": "affected", "version": ">= 2.50.0, < 2.50.1"}]}], "references": [{"url": "https://github.com/j6t/gitk/security/advisories/GHSA-g4v5-fjv9-mhhc", "name": "https://github.com/j6t/gitk/security/advisories/GHSA-g4v5-fjv9-mhhc", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/j6t/gitk/commit/8e3070aa5e331be45d4d03e3be41f84494fce129", "name": "https://github.com/j6t/gitk/commit/8e3070aa5e331be45d4d03e3be41f84494fce129", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script (e.g., Bourne shell, Perl, Python, ...) supplied by the attacker by invoking gitk filename, where filename has a particular structure. The script is run with the privileges of the user. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-78", "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2025-07-10T15:02:25.947Z"}}}, "cveMetadata": {"cveId": "CVE-2025-27614", "state": "PUBLISHED", "dateUpdated": "2025-07-10T15:54:47.537Z", "dateReserved": "2025-03-03T15:10:34.080Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2025-07-10T15:02:25.947Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script (e.g., Bourne shell, Perl, Python, ...) supplied by the attacker by invoking gitk filename, where filename has a particular structure. The script is run with the privileges of the user. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50."}, {"lang": "es", "value": "Gitk es un explorador de historial de Git basado en Tcl/Tk. A partir de la versi\u00f3n 2.41.0, se puede manipular un repositorio Git de forma que, mediante ingenier\u00eda social, se pueda enga\u00f1ar a un usuario que lo haya clonado para que ejecute cualquier script (p. ej., Bourne Shell, Perl, Python, etc.) proporcionado por el atacante invocando gitk filename, donde filename tiene una estructura espec\u00edfica. El script se ejecuta con los privilegios del usuario. Esta vulnerabilidad est\u00e1 corregida en las versiones 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1 y 2.50."}], "id": "CVE-2025-27614", "lastModified": "2025-07-15T13:24:41.097", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 6.0, "source": "[email protected]", "type": "Secondary"}]}, "published": "2025-07-10T15:15:26.403", "references": [{"source": "[email protected]", "url": "https://github.com/j6t/gitk/commit/8e3070aa5e331be45d4d03e3be41f84494fce129"}, {"source": "[email protected]", "url": "https://github.com/j6t/gitk/security/advisories/GHSA-g4v5-fjv9-mhhc"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-78"}], "source": "[email protected]", "type": "Primary"}]}

{"bugzilla": {"description": "gitk: git script execution flaw", "id": "2379125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379125"}, "csaw": false, "cvss3": {"cvss3_base_score": "6.3", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L", "status": "draft"}, "details": ["No description is available for this CVE."], "name": "CVE-2025-27614", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Under investigation", "package_name": "git", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Under investigation", "package_name": "git", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Under investigation", "package_name": "git", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Under investigation", "package_name": "git", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Under investigation", "package_name": "git", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Under investigation", "package_name": "rhcos", "product_name": "Red Hat OpenShift Container Platform 4"}], "public_date": "2025-07-08T13:01:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2025-27614\nhttps://nvd.nist.gov/vuln/detail/CVE-2025-27614\nhttps://lore.kernel.org/git/[email protected]/\nhttps://www.openwall.com/lists/oss-security/2025/07/08/4"], "threat_severity": "Moderate"}