VIR Vulnerability Intelligence Relay

Package impact

golang Go / github.com/cli/cli

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2026-45803 low 3.5 3.5 13d ago GitHub CLI: GitHub Actions log output in `gh run view` allows terminal escape sequence injection debiansusegolanggithub
CVE-2025-25204 unknown 1y ago `gh` is GitHub’s official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain conditions, a bug in GitHub's Artifact Attestation cli tool `gh attestation verify` … debiangolang
CVE-2024-54132 unknown 2y ago The GitHub CLI is GitHub’s official command line tool. A security vulnerability has been identified in GitHub CLI that could create or overwrite files in unintended directories when users download a … debiansusegolang
CVE-2024-53858 unknown 2y ago The gh cli is GitHub’s official command line tool. A security vulnerability has been identified in the GitHub CLI that could leak authentication tokens when cloning repositories containing `git` subm… debiangolang
CVE-2024-52308 unknown 2y ago The GitHub CLI version 2.6.1 and earlier are vulnerable to remote code execution through a malicious codespace SSH server when using `gh codespace ssh` or `gh codespace logs` commands. This has been … debiangolang