CVE-2024-52308 affects package gh for versions below 2.62.0-1; upgrade available to resolve issue.
Reporter | Title | Published | Views | Family All 18 |
---|---|---|---|---|
OSV | CGA-9p6q-rr9m-xvc9 | 16 Nov 202408:21 | – | osv |
OSV | Connecting to a malicious Codespaces via GH CLI could allow command execution on the user's computer in github.com/cli/cli | 19 Nov 202417:20 | – | osv |
OSV | CVE-2024-52308 | 14 Nov 202423:15 | – | osv |
OSV | UBUNTU-CVE-2024-52308 | 14 Nov 202423:15 | – | osv |
OSV | Connecting to a malicious Codespaces via GH CLI could allow command execution on the user's computer | 14 Nov 202417:39 | – | osv |
OSV | gh vulnerability | 26 Nov 202419:29 | – | osv |
OSV | gh-2.62.0-1.1 on GA media | 18 Nov 202400:00 | – | osv |
OSV | govulncheck-vulndb-0.0.20241119T173509-1.1 on GA media | 20 Nov 202400:00 | – | osv |
Cvelist | CVE-2024-52308 Connecting to a malicious Codespaces via GH CLI could allow command execution on the user's computer | 14 Nov 202422:55 | – | cvelist |
Vulnrichment | CVE-2024-52308 Connecting to a malicious Codespaces via GH CLI could allow command execution on the user's computer | 14 Nov 202422:55 | – | vulnrichment |
OS | OS Version | Architecture | Package | Package Version | Filename |
---|---|---|---|---|---|
Azure Linux | 3.0 | all | gh | 2.62.0-1 | UNKNOWN |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo