CVE-2026-32947
- EPSS 0.09%
- Veröffentlicht 20.03.2026 04:03:03
- Zuletzt bearbeitet 24.03.2026 12:33:33
Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. In versions 2.15.1 and below, a DNS over HTTPS (DoH) vulnerability allows attackers to bypass egress-policy: block network restrictions by tunneling exfiltrate...
CVE-2026-32946
- EPSS 0.08%
- Veröffentlicht 20.03.2026 03:58:40
- Zuletzt bearbeitet 24.03.2026 13:12:38
Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. In versions 2.15.1 and below, the Harden-Runner that allows bypass of the egress-policy: block network restriction using DNS queries over TCP. Egress policies ...
CVE-2026-25598
- EPSS 0.02%
- Veröffentlicht 09.02.2026 18:58:57
- Zuletzt bearbeitet 28.02.2026 00:23:47
Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. Prior to 2.14.2, a security vulnerability has been identified in the Harden-Runner GitHub Action (Community Tier) that allows outbound network connections to e...