4 matches found
EUVD-2025-25049
Malicious code in bioql PyPI...
terragrunt-0.85.1-1.1 on GA media (moderate)
terragrunt-0.85.1-1.1 on GA media Announcement ID: openSUSE-SU-2025:15486-1 Rating: moderate Cross-References: CVE-2025-8959 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...
HashiCorp go-getter Vulnerable to Symlink Attacks
HashiCorp's go-getter library subdirectory download feature is vulnerable to symlink attacks leading to unauthorized read access beyond the designated directory boundaries. This vulnerability, identified as CVE-2025-8959, is fixed in go-getter 1.7.9...
CVE-2025-8959
HashiCorp's go-getter library subdirectory download feature is vulnerable to symlink attacks leading to unauthorized read access beyond the designated directory boundaries. This vulnerability, identified as CVE-2025-8959, is fixed in go-getter 1.7.9...