Known Vulnerabilities for products from Github

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Github".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2023-28426	REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: GHSA-xrqq-wqh4-5hg2. Reason: Further investigation showed that thi...	Not Provided	2023-03-20	2023-03-23
CVE-2023-27581	github-slug-action is a GitHub Action to expose slug value of GitHub environment variables inside of one's GitHub workflow. S...	8.8 - HIGH	2023-03-13	2023-03-13
CVE-2023-25562	DataHub is an open-source metadata platform. In versions of DataHub prior to 0.8.45 Session cookies are only cleared on new s...	9.8 - CRITICAL	2023-02-11	2023-02-10
CVE-2023-25561	DataHub is an open-source metadata platform. In the event a system is using Java Authentication and Authorization Service (JA...	9.8 - CRITICAL	2023-02-11	2023-02-10
CVE-2023-25560	DataHub is an open-source metadata platform. The AuthServiceClient which is responsible for creation of new accounts, verifyi...	9.8 - CRITICAL	2023-02-11	2023-02-10
CVE-2023-25559	DataHub is an open-source metadata platform. When not using authentication for the metadata service, which is the default con...	8.1 - HIGH	2023-02-11	2023-02-10
CVE-2023-25558	DataHub is an open-source metadata platform. When the DataHub frontend is configured to authenticate via SSO, it will leverag...	8.8 - HIGH	2023-02-11	2023-02-10
CVE-2023-25557	DataHub is an open-source metadata platform. The DataHub frontend acts as a proxy able to forward any REST or GraphQL request...	9.1 - CRITICAL	2023-02-11	2023-02-10
CVE-2023-24997	Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong:...	9.8 - CRITICAL	2023-02-01	2023-02-01
CVE-2023-24977	Out-of-bounds Read vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 thr...	7.5 - HIGH	2023-02-01	2023-02-01
CVE-2022-24724	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	9.8 - CRITICAL	2022-03-03	2022-04-18
CVE-2022-24722	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	6.1 - MEDIUM	2022-03-02	2022-03-10
CVE-2022-23741	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	7.2 - HIGH	2022-12-14	2022-12-16
CVE-2022-23740	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	8.8 - HIGH	2022-11-23	2022-11-30
CVE-2022-23739	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	9.8 - CRITICAL	2023-01-17	2023-01-25
CVE-2022-23738	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	5.7 - MEDIUM	2022-11-01	2022-11-02
CVE-2022-23737	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	6.5 - MEDIUM	2022-12-01	2022-12-05
CVE-2022-23734	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	8.8 - HIGH	2022-10-19	2022-10-20
CVE-2022-23733	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	5.4 - MEDIUM	2022-08-02	2022-08-06
CVE-2022-23732	RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new secur...	8.8 - HIGH	2022-04-05	2022-04-13

Results limited to 20 most recent vulnerabilities

Known software with vulnerabilities from Github

Type	Vendor	Product	Version
Application	Github	Gaug.es	-
Application	Github	Github	2.0.0

GitHub

apps.apple.com/us/app/github/id1477376905 Search in App Store

App Store GitHub Developer Tools

GitHub/Hosting service for software projects using Git

GitHub, Inc. is a provider of Internet hosting for software development and version control using Git. It offers the distributed version control and source code management functionality of Git, plus its own features. It provides access control and several collaboration features such as bug tracking, feature requests, task management, continuous integration and wikis for every project. Headquartered in California, it has been a subsidiary of Microsoft since 2018.

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].

Known Vulnerabilities for products from Github