Vulnerabilities > GIT Large File Storage Project > GIT Large File Storage > 2.13.2

DATE	CVE	VULNERABILITY TITLE	RISK
2022-04-20	CVE-2022-24826	Untrusted Search Path vulnerability in GIT Large File Storage Project GIT Large File Storage On Windows, if Git LFS operates on a malicious repository with a `..exe` file as well as a file named `git.exe`, and `git.exe` is not found in `PATH`, the `..exe` program will be executed, permitting the attacker to execute arbitrary code. local low complexity git-large-file-storage-project CWE-426	7.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.