Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.4 views

Azure Linux 3.0 Security Update: gh (CVE-2025-48938)

The version of gh installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-48938 advisory. - go-gh is a collection of Go modules to make authoring GitHub CLI extensions easier. A security vulnerability has...

9.8CVSS5.9AI score0.00429EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/08/07 3:8 p.m.6 views

CVE-2025-48938 affecting package gh for versions less than 2.62.0-9

CVE-2025-48938 affecting package gh for versions less than 2.62.0-9. A patched version of the package is available...

9.8CVSS6.4AI score0.00429EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/13 12:0 a.m.7 views

Fedora 41 : gh (2025-164ac0d01f)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-164ac0d01f advisory. Update to 2.74.0 - Fixes CVE-2025-48938 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

9.8CVSS5.6AI score0.00429EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/06/13 12:0 a.m.5 views

Fedora: Security Advisory (FEDORA-2025-164ac0d01f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.5AI score0.00429EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/06/13 12:0 a.m.2 views

Fedora: Security Advisory (FEDORA-2025-82ac5e4065)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.5AI score0.00429EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/06/12 12:0 a.m.6 views

Fedora 42 : gh (2025-82ac5e4065)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-82ac5e4065 advisory. Update to 2.74.0 - Fixes CVE-2025-48938 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...

9.8CVSS5.6AI score0.00429EPSS
Exploits0References2
NVD
NVD
added 2025/05/30 7:15 p.m.9 views

CVE-2025-48938

go-gh is a collection of Go modules to make authoring GitHub CLI extensions easier. A security vulnerability has been identified in versions prior to 2.12.1 where an attacker-controlled GitHub Enterprise Server could result in executing arbitrary commands on a user's machine by replacing HTTP URL...

9.8CVSS0.00429EPSS
Exploits0References3
Circl
Circl
added 2025/05/30 7:8 p.m.30 views

CVE-2025-48938

creationtimestamp| type| source ---|---|--- 2025-05-30 19:08:14+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqfwifn7zbg2...

9.8CVSS6.5AI score0.00429EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/30 6:45 p.m.18 views

CVE-2025-48938 Prevent GitHub CLI and extensions from executing arbitrary commands from compromised GitHub Enterprise Server

go-gh is a collection of Go modules to make authoring GitHub CLI extensions easier. A security vulnerability has been identified in versions prior to 2.12.1 where an attacker-controlled GitHub Enterprise Server could result in executing arbitrary commands on a user's machine by replacing HTTP URL...

6.5CVSS0.00429EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/05/30 6:45 p.m.10 views

CVE-2025-48938 Prevent GitHub CLI and extensions from executing arbitrary commands from compromised GitHub Enterprise Server

go-gh is a collection of Go modules to make authoring GitHub CLI extensions easier. A security vulnerability has been identified in versions prior to 2.12.1 where an attacker-controlled GitHub Enterprise Server could result in executing arbitrary commands on a user's machine by replacing HTTP URL...

6.5CVSS6.7AI score0.00429EPSS
Exploits0References3
Rows per page
Query Builder