Skip to main content

conda-smithy EUVDEUVD-2026-37949

| CVE-2026-46699 HIGH
Improper Access Control (CWE-284)
2026-06-18 GitHub_M
7.6
CVSS 3.1 · Vendor: GitHub_M
Share

Severity by source

Vendor (GitHub_M) PRIMARY
7.6 HIGH
AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L
vuln.today AI
7.7 HIGH

Attacker must control a reclaimed GitHub login (PR:L) and rely on a pre-existing abandoned-username condition (AC:H); compromise of a feedstock affects downstream package consumers, justifying S:C and high integrity.

3.1 AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L
4.0 AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L

Primary rating from Vendor (GitHub_M).

CVSS VectorVendor: GitHub_M

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
Low
Integrity
High
Availability
Low

Lifecycle Timeline

3
Patch available
Jun 18, 2026 - 23:16 EUVD
Source Code Evidence Fetched
Jun 18, 2026 - 21:52 vuln.today
Analysis Generated
Jun 18, 2026 - 21:52 vuln.today

DescriptionCVE.org

conda-smithy is a tool for combining a conda recipe with configurations to build using freely hosted CI services into a single repository. Prior to version 3.61.0, a vulnerability in the conda-forge automated webservices allowed unintended write access to feedstock repositories through GitHub username takeover. The root cause is the use of mutable GitHub usernames as identifiers for repository invitation routing, rather than stable, immutable GitHub user IDs. Version 3.61.0 fixes the issue.

AnalysisAI

Unintended write access to conda-forge feedstock repositories in conda-smithy prior to 3.61.0 allows attackers who register an abandoned or relinquished GitHub username (a username takeover) to be auto-invited as a maintainer when the conda-forge webservices route repository invitations based on mutable usernames rather than immutable user IDs. The flaw maps to CWE-284 (Improper Access Control) and impacts the conda-forge package supply chain; no public exploit identified at time of analysis, but the GitHub security advisory GHSA-g95q-3cmj-fvh8 and a fix commit are public.

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Identify feedstock listing relinquished maintainer username
Delivery
Register that GitHub username on github.com
Exploit
conda-forge webservices reconciles feedstock team
Execution
Vulnerable conda-smithy invites attacker account as maintainer
Persist
Push malicious recipe to feedstock
Impact
CI builds and publishes poisoned conda package

Vulnerability AssessmentAI

Exploitation Exploitation requires (1) a conda-forge feedstock whose recipe/meta.yaml still lists a GitHub username belonging to an account that has since been deleted, renamed, or otherwise made available; (2) the attacker successfully registering that exact GitHub username on github.com; and (3) the conda-forge automated webservices running conda-smithy's configure_github_team reconciliation against that feedstock prior to the 3.61.0 fix being deployed. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 vector AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L (7.6) indicates network-reachable, low-complexity, unauthenticated exploitation requiring user interaction, with high integrity impact - consistent with the takeover scenario where an attacker registers an abandoned login that conda-forge automation then invites as a maintainer. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker identifies a former conda-forge maintainer whose GitHub account was deleted or renamed, registers a new GitHub account with that exact (now-available) username, and waits for the conda-forge automated webservices to re-run maintainer reconciliation on a feedstock that still lists the old username in recipe/meta.yaml. The automation invites the attacker-controlled account to the feedstock team, granting write access to push malicious build recipes that are then published as conda-forge packages to downstream users.
Remediation Vendor-released patch: conda-smithy 3.61.0 - upgrade to this version or later, which records numeric GitHub user IDs in a .recipe_maintainers.json file and verifies that a recipe maintainer's current username still resolves to the same immutable user ID before granting feedstock team membership (see commit 3b0bcd92ebd6f41edd341401d84583a20911c587 and advisory GHSA-g95q-3cmj-fvh8). … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Audit your infrastructure to identify all conda-smithy deployments and document versions currently in use; cross-reference with conda-forge maintainer accounts for unauthorized or suspicious recent additions. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-37949 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy