CVE-2026-44358
Espressif Shared GitHub DangerJS: Untrusted Search Path in DangerJS Action Entrypoint
CVSS Score
8.2
EPSS Score
0.0%
EPSS Percentile
8th
Espressif Shared GitHub DangerJS is a reusable GitHub Action CI DangerJS workflow for Espressif GitHub projects. Prior to 1.0.1, the action's entrypoint.sh invoked DangerJS from the caller's workspace after copying the fork's checkout into it, creating an untrusted search path for both binary resolution and Node.js module resolution. A fork pull request processed by a pull_request_target workflow could therefore cause fork-supplied code to execute inside the action container in place of the action's own code. This vulnerability is fixed in 1.0.1.
| CWE | CWE-427 CWE-829 |
| Vendor | espressif |
| Product | shared-github-dangerjs |
| Published | May 28, 2026 |
| Last Updated | May 30, 2026 |
Stay Ahead of the Next One
Get instant alerts for espressif shared-github-dangerjs
Be the first to know when new high vulnerabilities affecting espressif shared-github-dangerjs are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:N Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
High
Availability
None
Affected Versions
espressif / shared-github-dangerjs
< 1.0.1