Vulnerability Report: GO-2024-3269

  • CVE-2024-52308, GHSA-p2h2-3vg9-4p87
  • Affects: github.com/cli/cli, github.com/cli/cli/v2
  • Published: Nov 19, 2024

Connecting to a malicious Codespaces via GH CLI could allow command execution on the user's computer in github.com/cli/cli

For detailed information about this vulnerability, visit https://github.com/cli/cli/security/advisories/GHSA-p2h2-3vg9-4p87 or https://nvd.nist.gov/vuln/detail/CVE-2024-52308.

Affected Packages

  • Path
    Versions
    Symbols

Aliases

References

Feedback

See anything missing or incorrect? Suggest an edit to this report.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.