Github

Cli

3 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.3

CVE-2024-54132

  • EPSS 0.18%
  • Published 04.12.2024 16:15:26
  • Last modified 04.12.2024 16:15:26

The GitHub CLI is GitHub’s official command line tool. A security vulnerability has been identified in GitHub CLI that could create or overwrite files in unintended directories when users download a malicious GitHub Actions workflow artifact through ...

6.5

CVE-2024-53858

  • EPSS 0.05%
  • Published 27.11.2024 22:15:05
  • Last modified 27.11.2024 22:15:05

The gh cli is GitHub’s official command line tool. A security vulnerability has been identified in the GitHub CLI that could leak authentication tokens when cloning repositories containing `git` submodules hosted outside of GitHub.com and ghe.com. Th...

9.6

CVE-2024-52308

  • EPSS 0.89%
  • Published 14.11.2024 23:15:05
  • Last modified 20.11.2024 15:07:43

The GitHub CLI version 2.6.1 and earlier are vulnerable to remote code execution through a malicious codespace SSH server when using `gh codespace ssh` or `gh codespace logs` commands. This has been patched in the cli v2.62.0. Developers connect to ...