Openlit Software Development Kit

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2026-27941 CRITICAL POC PATCH Act Now

Supply chain attack vector in OpenLIT GitHub Actions workflows. The pull_request_target trigger with checkout enables malicious PRs to execute code in the context of the base repository. PoC and patch available.

Github AI / ML Openlit Software Development Kit

NVD GitHub

CVSS 3.1

9.9

EPSS

0.1%

CVE-2026-27941

EPSS 0% CVSS 9.9

CRITICAL POC PATCH Act Now

Supply chain attack vector in OpenLIT GitHub Actions workflows. The pull_request_target trigger with checkout enables malicious PRs to execute code in the context of the base repository. PoC and patch available.

Github AI / ML Openlit Software Development Kit

NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy