CVE-2025-66413

CVE-2025-66413

Name

CVE-2025-66413

Description

Git for Windows is the Windows port of Git. Prior to 2.53.0(2), it is possible to obtain a user's NTLM hash by tricking them into cloning from a malicious server. Since NTLM hashing is weak, it is possible for the attacker to brute-force the user's account name and password. This vulnerability is fixed in 2.53.0(2).

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
security-advisories@github.com	https://github.com/git-for-windows/git/releases/tag/v2.53.0.windows.2
security-advisories@github.com	https://github.com/git-for-windows/git/security/advisories/GHSA-hv9c-4jm9-jh3x

Type

URI

security-advisories@github.com

https://github.com/git-for-windows/git/releases/tag/v2.53.0.windows.2

security-advisories@github.com

https://github.com/git-for-windows/git/security/advisories/GHSA-hv9c-4jm9-jh3x

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:gitforwindows:git::::::::`	git	>= None	<= 2.53.0

CPE URI

Source package

Min version

Max version

cpe:2.3:a:gitforwindows:git:*:*:*:*:*:*:*:*

git

>= None

<= 2.53.0

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
git	edge-main	2.53.0-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.53.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.52.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.51.2-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.51.1-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.51.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.50.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.50.0-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.50.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.49.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.48.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.48.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.47.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.46.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.45.2-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.45.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.40.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.39.2-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.39.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.38.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.37.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.35.2-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.31.1-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	edge-main	2.30.2-r0	None	possibly vulnerable
git	edge-main	2.26.2-r0	None	possibly vulnerable
git	edge-main	2.26.1-r0	None	possibly vulnerable
git	edge-main	2.24.1-r0	None	possibly vulnerable
git	edge-main	2.19.1-r0	None	possibly vulnerable
git	edge-main	2.17.1-r0	None	possibly vulnerable
git	edge-main	2.14.1-r0	None	possibly vulnerable
git	3.23-main	2.52.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	3.22-main	2.49.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	3.22-main	2.49.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	3.22-main	2.48.1-r0	None	possibly vulnerable
git	3.22-main	2.45.1-r0	None	possibly vulnerable
git	3.22-main	2.40.1-r0	None	possibly vulnerable
git	3.22-main	2.39.2-r0	None	possibly vulnerable
git	3.22-main	2.39.1-r0	None	possibly vulnerable
git	3.22-main	2.38.1-r0	None	possibly vulnerable
git	3.22-main	2.37.1-r0	None	possibly vulnerable
git	3.22-main	2.35.2-r0	None	possibly vulnerable
git	3.22-main	2.30.2-r0	None	possibly vulnerable
git	3.22-main	2.26.2-r0	None	possibly vulnerable
git	3.22-main	2.26.1-r0	None	possibly vulnerable
git	3.22-main	2.24.1-r0	None	possibly vulnerable
git	3.22-main	2.19.1-r0	None	possibly vulnerable
git	3.22-main	2.17.1-r0	None	possibly vulnerable
git	3.22-main	2.14.1-r0	None	possibly vulnerable
git	3.21-main	2.47.3-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	3.21-main	2.47.2-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	3.21-main	2.47.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	3.21-main	2.45.1-r0	None	possibly vulnerable
git	3.21-main	2.40.1-r0	None	possibly vulnerable
git	3.21-main	2.39.2-r0	None	possibly vulnerable
git	3.21-main	2.39.1-r0	None	possibly vulnerable
git	3.21-main	2.38.1-r0	None	possibly vulnerable
git	3.21-main	2.37.1-r0	None	possibly vulnerable
git	3.21-main	2.35.2-r0	None	possibly vulnerable
git	3.21-main	2.30.2-r0	None	possibly vulnerable
git	3.21-main	2.26.2-r0	None	possibly vulnerable
git	3.21-main	2.26.1-r0	None	possibly vulnerable
git	3.21-main	2.24.1-r0	None	possibly vulnerable
git	3.21-main	2.19.1-r0	None	possibly vulnerable
git	3.21-main	2.17.1-r0	None	possibly vulnerable
git	3.21-main	2.14.1-r0	None	possibly vulnerable
git	3.20-main	2.45.4-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	3.20-main	2.45.3-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	3.20-main	2.45.2-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	3.20-main	2.45.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	3.20-main	2.40.1-r0	None	possibly vulnerable
git	3.20-main	2.39.2-r0	None	possibly vulnerable
git	3.20-main	2.39.1-r0	None	possibly vulnerable
git	3.20-main	2.38.1-r0	None	possibly vulnerable
git	3.20-main	2.37.1-r0	None	possibly vulnerable
git	3.20-main	2.35.2-r0	None	possibly vulnerable
git	3.20-main	2.30.2-r0	None	possibly vulnerable
git	3.20-main	2.26.2-r0	None	possibly vulnerable
git	3.20-main	2.26.1-r0	None	possibly vulnerable
git	3.20-main	2.24.1-r0	None	possibly vulnerable
git	3.20-main	2.19.1-r0	None	possibly vulnerable
git	3.20-main	2.17.1-r0	None	possibly vulnerable
git	3.20-main	2.14.1-r0	None	possibly vulnerable
git	3.19-main	2.43.7-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	3.19-main	2.43.6-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	3.19-main	2.43.5-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	3.19-main	2.43.4-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
git	3.19-main	2.40.1-r0	None	possibly vulnerable
git	3.19-main	2.39.2-r0	None	possibly vulnerable
git	3.19-main	2.39.1-r0	None	possibly vulnerable
git	3.19-main	2.38.1-r0	None	possibly vulnerable
git	3.19-main	2.37.1-r0	None	possibly vulnerable
git	3.19-main	2.35.2-r0	None	possibly vulnerable
git	3.19-main	2.30.2-r0	None	possibly vulnerable
git	3.19-main	2.26.2-r0	None	possibly vulnerable
git	3.19-main	2.26.1-r0	None	possibly vulnerable
git	3.19-main	2.24.1-r0	None	possibly vulnerable
git	3.19-main	2.19.1-r0	None	possibly vulnerable
git	3.19-main	2.17.1-r0	None	possibly vulnerable
git	3.19-main	2.14.1-r0	None	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages