What is CVE-2025-48384?

A high-severity vulnerability in Git affects Apple and Debian products. Exploitation can lead to arbitrary code execution through mishandled config values. Immediate patching is necessary.

What is the severity of CVE-2025-48384?

CVE-2025-48384 has a severity rating of HIGH with a CVSS base score of 8.

Is CVE-2025-48384 in CISA KEV?

Yes. CVE-2025-48384 is listed in the CISA Known Exploited Vulnerabilities (KEV) catalog. Organizations should prioritize remediation.

CVE-2025-48384 | High Vulnerability in Apple Git

CVE-2025-48384 is a high-severity vulnerability found in Git, a widely-used distributed version control system. This vulnerability arises from the way Git handles configuration values, specifically concerning trailing carriage returns. When Git reads a configuration value, it strips any trailing carriage return and line feed (CRLF). However, when writing a configuration entry, values with a trailing carriage return are not quoted, leading to potential loss of important data when the configuration is read again.

This flaw can be particularly detrimental during the initialization of submodules. If a submodule path contains a trailing carriage return, Git may incorrectly interpret the path, resulting in the submodule being checked out to an unintended location. The implications of this vulnerability are significant, especially if there's a symbolic link pointing to the incorrectly altered path that leads to the submodule hooks directory. If this submodule has an executable post-checkout hook, it may execute unintentionally after the checkout process.

The vulnerability was published on July 8, 2025, and has been assigned a CVSS score of 8, categorizing it as high severity. Organizations utilizing affected versions of Git, Apple’s Xcode, or Debian Linux are at risk, and should take immediate action to mitigate this vulnerability.

Risk to organizations includes potential arbitrary code execution, which can lead to unauthorized access and system compromise. Attackers may leverage this flaw to execute malicious scripts within the affected environments. Organizations should prioritize patching immediately.

The vulnerability is actively exploited, and public proof of concept (PoC) code has been found, indicating that this issue is being taken seriously by the security community.

To mitigate this vulnerability, organizations must upgrade to fixed versions of Git, specifically v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, or v2.50.1. It is critical to ensure that all affected products are updated to prevent exploitation.

For ongoing risk management, organizations should conduct regular vulnerability assessments and maintain an updated inventory of their software components.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE ID

Severity

CVE-2025-65418

HIGH

CVE-2025-65417

MEDIUM

CVE-2025-65416

MEDIUM

CVE-2025-65415

MEDIUM

CVE-2025-61314

HIGH

CVE-2025-48384: High Vulnerability in Apple Git

Latest CVEs. Recently published vulnerabilities from the NVD database.

Protect Your Business with Hacker-Focused Approach.