Skip to main content

Octokit

2 CVEs product

Monthly

CVE-2023-50728 npm HIGH PATCH This Week

octokit/webhooks is a GitHub webhook events toolset for Node.js. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Node.js Information Disclosure App Octokit Webhooks +1
NVD GitHub
CVSS 3.1
7.5
EPSS
0.7%
CVE-2022-31072 Ruby LOW PATCH Monitor

Octokit is a Ruby toolkit for the GitHub API. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Privilege Escalation Octokit
NVD GitHub
CVSS 3.1
3.3
EPSS
0.3%
EPSS 1% CVSS 7.5
HIGH PATCH This Week

octokit/webhooks is a GitHub webhook events toolset for Node.js. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Node.js Information Disclosure App +3
NVD GitHub
EPSS 0% CVSS 3.3
LOW PATCH Monitor

Octokit is a Ruby toolkit for the GitHub API. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Privilege Escalation Octokit
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy