CVE-2025-10283 | THREATINT

Description

BBOT's gitdumper module could be abused to execute commands through a malicious git repository.

PUBLISHED Reserved 2025-09-11 | Published 2025-10-09 | Updated 2025-10-09 | Assigner BLSOPS

CRITICAL: 9.6CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Problem types

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Product status

Default status

unaffected

0.0.0 (2.7.1)

affected

References

blog.blacklanternsecurity.com/...security-advisory-gitdumper

cve.org (CVE-2025-10283)

nvd.nist.gov (CVE-2025-10283)

Download JSON

help @ threatint.eu