Vulnerability Details CVE-2025-68144
In mcp-server-git versions prior to 2025.12.17, the git_diff and git_checkout functions passed user-controlled arguments directly to git CLI commands without sanitization. Flag-like values (e.g., `--output=/path/to/file` for `git_diff`) would be interpreted as command-line options rather than git refs, enabling arbitrary file overwrites. The fix adds validation that rejects arguments starting with - and verifies the argument resolves to a valid git ref via rev_parse before execution. Users are advised to update to 2025.12.17 resolve this issue when it is released.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.4%
CVSS Severity
CVSS v3 Score 7.1
Products affected by CVE-2025-68144
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:0.1.0
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:0.2.0
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:0.3.0
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:0.3.1
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:0.4.0
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:0.4.1
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:0.5.0
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:0.5.1
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.1.14
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.1.17
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.1.23
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.11.25
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.2.12
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.2.3
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.2.5
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.3.19
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.3.28
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.4.24
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.4.28
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.4.6
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.4.8
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.5.12
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.7.1
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.7.29
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.8.13
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.8.18
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.8.21
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.8.4
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.9.1
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.9.12
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.9.25
-
cpe:2.3:a:lfprojects:model_context_protocol_servers:2025.9.3