CVE-2025-66413
Git for Windows is the Windows port of Git. Prior to 2.53.0(2), it is possible to obtain a user's NTLM hash by tricking them into cloning from a malicious server.
Show publication6 disclosed vulnerabilities and advisories.
Git for Windows is the Windows port of Git. Prior to 2.53.0(2), it is possible to obtain a user's NTLM hash by tricking them into cloning from a malicious server.
Show publicationAn issue in Archive v3.3.7 allows attackers to spoof zip filenames which can lead to inconsistent filename parsing.
Show publicationAn issue in Zip Swift v2.1.2 allows attackers to execute a path traversal attack via a crafted zip entry.
Show publicationAn issue in ZIPFoundation v0.9.16 allows attackers to execute a path traversal via extracting a crafted zip file.
Show publicationAn unhandled edge case in the component _sanitizedPath of ZipArchive v2.5.4 allows attackers to cause a Denial of Service (DoS) via a crafted zip file.
Show publicationAn issue in Archive v3.3.7 allows attackers to execute a path traversal via extracting a crafted zip file.
Show publication