What is the CVSS score of CVE-2026-27941?

CVE-2026-27941 has a CVSS 3.1 base score of 9.9 (Critical). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of Github are affected by CVE-2026-27941?

A critical vulnerability in OpenLIT's GitHub Actions workflows allows attackers to execute malicious code and steal sensitive secrets (API keys, database credentials, cloud service accounts) from the…. A patch is available.

Is there a public PoC exploit available for CVE-2026-27941?

Yes, a public proof-of-concept exploit is available for CVE-2026-27941. Prioritise patching immediately. EPSS: 0.1%.

How to fix or mitigate CVE-2026-27941?

Within 24 hours: Immediately upgrade OpenLIT to version 1.37.1 or later and rotate all exposed secrets (API keys, database tokens, Google Cloud service account keys). Within 7 days: Audit GitHub Actions logs for suspicious activity and unauthorized secret access between vulnerability disclosure and patching. Within 30 days: Implement pull request approval requirements for external contributors and review GitHub Actions security settings to disable unnecessary secret exposure.

Github CVE-2026-27941

CRITICAL

Inclusion of Functionality from Untrusted Control Sphere (CWE-829)

2026-02-26 security-advisories@github.com

Github AI / ML Openlit Software Development Kit

9.9

CVSS 3.1 · GitHub Advisory

Severity by source

GitHub Advisory PRIMARY

9.9 CRITICAL

AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Primary rating from GitHub Advisory · only source for this CVE.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:55 vuln.today

PoC Detected

Mar 06, 2026 - 20:06 vuln.today

Public exploit code

Patch released

Mar 06, 2026 - 20:06 nvd

Patch available

CVE Published

Feb 26, 2026 - 02:16 nvd

CRITICAL 9.9

DescriptionGitHub Advisory

OpenLIT is an open source platform for AI engineering. Prior to version 1.37.1, several GitHub Actions workflows in OpenLIT's GitHub repository use the pull_request_target event while checking out and executing untrusted code from forked pull requests. These workflows run with the security context of the base repository, including a write-privileged GITHUB_TOKEN and numerous sensitive secrets (API keys, database/vector store tokens, and a Google Cloud service account key). Version 1.37.1 contains a fix.

AnalysisAI

Supply chain attack vector in OpenLIT GitHub Actions workflows. The pull_request_target trigger with checkout enables malicious PRs to execute code in the context of the base repository. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Fork OpenLIT repository

Delivery

Submit malicious pull request

Exploit

GitHub Actions workflow executes untrusted code

Execution

Access write-privileged GITHUB_TOKEN and secrets

Impact

Exfiltrate credentials and compromise base repository

Access

Fork OpenLIT repository

Delivery

Submit malicious pull request

Exploit

GitHub Actions workflow executes untrusted code

Execution

Access write-privileged GITHUB_TOKEN and secrets

Impact

Exfiltrate credentials and compromise base repository

Vulnerability AssessmentAI

Exploitation	Attacker must have GitHub account to fork repository and submit pull request. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	CVSS 9.9. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	Attacker submits malicious PR to OpenLIT, the CI workflow runs with repository context, leaking secrets or pushing malicious code.
Remediation	Update workflows to avoid pull_request_target with checkout, or use separate approval step. Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Immediately upgrade OpenLIT to version 1.37.1 or later and rotate all exposed secrets (API keys, database tokens, Google Cloud service account keys). …

Threat intelligence, references, and detailed analysis are available after sign-in.

CVE-2026-27941 vulnerability details – vuln.today

Back

Github CVE-2026-27941

Severity by source

CVSS VectorGitHub Advisory

Lifecycle Timeline

DescriptionGitHub Advisory

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

Share

External POC / Exploit Code