Lucene search
+L

37 matches found

veracode
veracode
added 3 days ago4 views

Arbitrary Command Execution

GitHub CLI is vulnerable to Arbitrary Command Execution. The vulnerability is due to insufficient validation of JupyterLab URLs returned by a Codespace, where attacker-controlled non-loopback URLs such as vscode:// are passed to VS Code, allowing malicious Codespaces to execute arbitrary commands...

4.4CVSS6.3AI score0.00198EPSS
Exploits0References3Affected Software1
osv
osv
added 6 days ago4 views

OPENSUSE-SU-2026:21310-1 Security update for gh

This update for gh fixes the following issues: Changes in gh: - Update to version 2.96.0: Critical security fix: patched vulnerability in gh codespace jupyter that could allow command execution when connecting to malicious Codespaces Merge commit from fork Fix concurrent map writes in codespace...

9.6CVSS7AI score0.00861EPSS
Exploits0References23
snyk
snyk
added 6 days ago3 views

Unsafe Dependency Resolution

Overview Affected versions of this package are vulnerable to Unsafe Dependency Resolution when the gh codespace jupyter process opens a JupyterLab URL supplied by a process inside a Codespace without validating that it is a loopback HTTP or HTTPS address. An attacker can execute arbitrary command...

4.4CVSS6.3AI score0.00198EPSS
Exploits0References2
snyk
snyk
added 2026/05/29 5:16 p.m.7 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization via host resolution in the CLI authentication layer. An attacker can obtain authentication tokens intended for GitHub or GitHub Enterprise by causing authenticated requests to be sent to external hosts, as the ho...

9.1CVSS5.4AI score0.00289EPSS
Exploits0References2
snyk
snyk
added 2026/05/29 5:16 p.m.11 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization via host resolution in the CLI authentication layer. An attacker can obtain authentication tokens intended for GitHub or GitHub Enterprise by causing authenticated requests to be sent to external hosts, as the ho...

9.1CVSS5.4AI score0.00289EPSS
Exploits0References2
snyk
snyk
added 2026/05/29 5:16 p.m.7 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization via host resolution in the CLI authentication layer. An attacker can obtain authentication tokens intended for GitHub or GitHub Enterprise by causing authenticated requests to be sent to external hosts, as the ho...

9.1CVSS5.4AI score0.00289EPSS
Exploits0References2
thn
thn
added 2026/02/24 6:52 p.m.9 views

RoguePilot Flaw in GitHub Codespaces Enabled Copilot to Leak GITHUB_TOKEN

A vulnerability in GitHub Codespaces could have been exploited by bad actors to seize control of repositories by injecting malicious Copilot instructions in a GitHub issue. The artificial intelligence AI-driven vulnerability has been codenamed RoguePilot by Orca Security. It has since been patche...

6.4AI score
Exploits0
nessus
nessus
added 2026/01/22 12:0 a.m.8 views

Azure Linux 3.0 Security Update: gh (CVE-2024-53859)

The version of gh installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53859 advisory. - go-gh is a Go module for interacting with the gh utility and the GitHub API from the command line. A security...

7.5CVSS5.6AI score0.00534EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/10/16 4:1 p.m.6 views

CVE-2025-62379

Reflex is a library to build full-stack web apps in pure Python. In versions 0.5.4 through 0.8.14, the /auth-codespace endpoint automatically assigns the redirectto query parameter value directly to client-side links without any validation and triggers automatic clicks when the page loads in a...

3.1CVSS7.2AI score0.00236EPSS
Exploits0References1
github
github
added 2025/10/15 5:56 p.m.7 views

reflex-dev/reflex has an Open Redirect vulnerability

Mitigation Make sure GITHUBCODESPACESPORTFORWARDINGDOMAIN is not set in a production environment. So the following is correct: assert os.getenv"GITHUBCODESPACESPORTFORWARDINGDOMAIN" is None Vulnerability Description --- Vulnerability Overview - When the GET /auth-codespace page loads in a GitHub...

3.1CVSS7.3AI score0.00236EPSS
Exploits0References6Affected Software1
snyk
snyk
added 2025/10/15 5:56 p.m.4 views

Open Redirect

Overview reflex is a Web apps in pure Python. Affected versions of this package are vulnerable to Open Redirect via the redirectto query parameter in the /auth-codespace route, which is assigned directly to client-side links without validation and triggers automatic navigation. An attacker can...

3.1CVSS7AI score0.00236EPSS
Exploits0References2
osv
osv
added 2025/10/15 5:56 p.m.3 views

GHSA-RFH5-C9H5-Q8JM reflex-dev/reflex has an Open Redirect vulnerability

Mitigation Make sure GITHUBCODESPACESPORTFORWARDINGDOMAIN is not set in a production environment. So the following is correct: assert os.getenv"GITHUBCODESPACESPORTFORWARDINGDOMAIN" is None Vulnerability Description --- Vulnerability Overview - When the GET /auth-codespace page loads in a GitHub...

3.1CVSS7.3AI score0.00236EPSS
Exploits0References6
nvd
nvd
added 2025/10/15 4:15 p.m.7 views

CVE-2025-62379

Reflex is a library to build full-stack web apps in pure Python. In versions 0.5.4 through 0.8.14, the /auth-codespace endpoint automatically assigns the redirectto query parameter value directly to client-side links without any validation and triggers automatic clicks when the page loads in a...

3.1CVSS0.00236EPSS
Exploits0References2
cvelist
cvelist
added 2025/10/15 3:57 p.m.13 views

CVE-2025-62379 Open Redirect in reflex-dev/reflex

Reflex is a library to build full-stack web apps in pure Python. In versions 0.5.4 through 0.8.14, the /auth-codespace endpoint automatically assigns the redirectto query parameter value directly to client-side links without any validation and triggers automatic clicks when the page loads in a...

3.1CVSS0.00236EPSS
Exploits0References2
cve
cve
added 2025/10/15 3:57 p.m.19 views

CVE-2025-62379

Reflex (Python web app framework) versions 0.5.4–0.8.14 contain an Open Redirect in the /auth-codespace route: the redirect_to query parameter is assigned directly to client-side links without validation, triggering automatic navigation, which can redirect users to arbitrary external URLs. The vu...

3.1CVSS6.9AI score0.00236EPSS
Exploits0References2
osv
osv
added 2025/10/15 3:57 p.m.7 views

CVE-2025-62379 Open Redirect in reflex-dev/reflex

Reflex is a library to build full-stack web apps in pure Python. In versions 0.5.4 through 0.8.14, the /auth-codespace endpoint automatically assigns the redirectto query parameter value directly to client-side links without any validation and triggers automatic clicks when the page loads in a...

3.1CVSS7.3AI score0.00236EPSS
Exploits0References4
thn
thn
added 2025/09/23 11:26 a.m.4 views

ShadowV2 Botnet Exploits Misconfigured AWS Docker Containers for DDoS-for-Hire Service

Cybersecurity researchers have disclosed details of a new botnet that customers can rent access to conduct distributed denial-of-service DDoS attacks against targets of interest. The ShadowV2 botnet, according to Darktrace, predominantly targets misconfigured Docker containers on Amazon Web...

7AI score
Exploits0
ossf
ossf
added 2025/07/15 12:45 a.m.6 views

Malicious code in ado-codespaces-auth (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware acd2e4a00a6fa99e47e9f10ae7238f2faaf2dd65d07678a4f33037a25ef636c2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
githubexploit
githubexploit
added 2025/07/11 1:19 p.m.313 views

Exploit for CVE-2025-49113

Roundcube RCE Lab CVE-2025-49113 !Open in GitHub Codespac...

9.9CVSS10AI score0.94741EPSS
Exploits29
githubexploit
githubexploit
added 2025/07/11 1:19 p.m.189 views

Exploit for CVE-2025-49113

Roundcube RCE Lab CVE-2025-49113 !Open in GitHub Codespac...

9.9CVSS10AI score0.94741EPSS
Exploits29
Rows per page
Query Builder