CNNVD-202508-3101 Information

CNNVD ID

CNNVD-202508-3101

Related CVE

CVE-2025-55526

• CNNVD Published: 2025-08-26

Description (Chinese)

github-workflows是Kartverket个人开发者的GitHub Actions 的共享可重用工作流。 github-workflows存在安全漏洞，该漏洞源于api_server.py中download_workflow函数存在目录遍历。

Description (English)

GitHub Actions, a personal developer of Kartverket, shares reusable workflows. There is a security loophole in gethub-workflows that originates from the download workflow function in api server.py.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-26

Last Modified

2026-02-24

References

https://github.com/Zie619/n8n-workflows/issues/48 https://nvd.nist.gov/vuln/detail/CVE-2025-55526