Vulnerabilities > GIT Large File Storage Project > GIT Large File Storage > 2.13.1

DATE	CVE	VULNERABILITY TITLE	RISK
2022-04-20	CVE-2022-24826	Untrusted Search Path vulnerability in GIT Large File Storage Project GIT Large File Storage On Windows, if Git LFS operates on a malicious repository with a `..exe` file as well as a file named `git.exe`, and `git.exe` is not found in `PATH`, the `..exe` program will be executed, permitting the attacker to execute arbitrary code. local git-large-file-storage-project CWE-426	4.4
2021-01-15	CVE-2021-21237	Untrusted Search Path vulnerability in GIT Large File Storage Project GIT Large File Storage Git LFS is a command line extension for managing large files with Git. local low complexity git-large-file-storage-project CWE-426	4.6

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.