Cyberattacks

CISA Warns of Active Attacks Exploiting Critical Git Vulnerability

CISA alerts to a critical Git flaw CVE-2025-48384 exploited on macOS and Linux, urging urgent updates to avoid remote code execution.

By Content Team

Aug 26, 2025

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

CISA added a critical Git vulnerability (CVE-2025-48384) to its Known Exploited Vulnerabilities catalog Monday, warning that attackers are actively exploiting the flaw. The bug allows hackers to manipulate Git repositories with malicious .gitmodules files, potentially achieving remote code execution when developers clone infected repos.

The vulnerability affects macOS and Linux systems but not Windows. It stems from Git's handling of carriage return characters in submodule paths, letting attackers write files to unexpected locations. Git patched the issue in July across multiple versions, but CISA now requires federal agencies to update by September 15. Software developers and CI/CD systems remain primary targets.

Source: Security Week

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

Hasbro Hit by Cyberattack, Affecting Peppa Pig and Transformers Operations

Apr 4, 2026

Hasbro Hit by Cyberattack, Potentially Delaying Peppa Pig and Transformers Deliveries

Apr 2, 2026

Salesforce Customers Hit by Third Major Attack Wave in Six Months

Mar 11, 2026

Critical SmarterMail Vulnerability Allows Remote Code Execution

Dec 30, 2025