CVE-2025-54956 Information
Aug 04, 2025
cve
Description
The gh package before 1.5.0 for R delivers an HTTP response in a data structure that includes the Authorization header from the corresponding HTTP request.
Reference
https://github.com/r-lib/gh/commit/b575d488c71318449cc6c8c989c617db29275848 https://github.com/r-lib/gh/compare/v1.4.1…v1.5.0 https://github.com/r-lib/gh/issues/222
Related CNNVD
CNNVD-202508-191 (Published: 2025-08-03)
Share on: