CVE-2025-48386

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The wincred credential helper uses a static buffer (target) as a unique key for storing and comparing against internal storage. This credential helper does not properly bounds check the available space remaining in the buffer before appending to it with wcsncat(), leading to potential buffer overflows. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.
Classic Buffer Overflow
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.3 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
GitHub_MCNA
6.3 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
CISA-ADPADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Debian logo
Debian Releases
Debian Product
Codename
git
bullseye
vulnerable
bullseye (security)
vulnerable
bookworm
vulnerable
bookworm (security)
vulnerable
trixie
vulnerable
sid
vulnerable
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
git
plucky
Fixed 1:2.48.1-0ubuntu1.1
released
oracular
Fixed 1:2.45.2-1ubuntu1.2
released
noble
Fixed 1:2.43.0-1ubuntu7.3
released
jammy
Fixed 1:2.34.1-1ubuntu1.13
released
focal
Fixed 1:2.25.1-1ubuntu3.14+esm1
released
bionic
Fixed 1:2.17.1-1ubuntu0.18+esm2
released
xenial
Fixed 1:2.7.4-0ubuntu1.10+esm9
released
Common Weakness Enumeration
Vulnerability Media Exposure
References
https://github.com/git/git/security/advisories/GHSA-4v56-3xvj-xvfr