pkg:Go/github.com/git-lfs/git-lfs/v3

4 total CVEsCRITICAL1

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2022-24826Git LFS can execute a binary from the current directory on Windows
    >= 3.0.0, < 3.1.3
  • CVE-2025-26625Git LFS may write to arbitrary files via crafted symlinks
    from 0, < 3.7.1
  • CVE-2024-53263Git LFS permits exfiltration of credentials via crafted HTTP URLs in github.com/git-lfs/git-lfs
    >= 3.0.0, < 3.6.1
  • CVE-2024-53263Git LFS permits exfiltration of credentials via crafted HTTP URLs in github.com/git-lfs/git-lfs
    >= 3.0.0, < 3.6.1