🔐 CVE Alert

CVE-2026-59831

MEDIUM 4.4

GitHub CLI `gh codespace jupyter` could allow remote code execution when connecting to a malicious Codespace

CVSS Score
4.4
EPSS Score
0.2%
EPSS Percentile
10th

GitHub CLI (gh) is GitHub’s official command line tool. From 2.10.0 through 2.95.0, connecting to a malicious Codespace with gh codespace jupyter can allow command execution because the command opens a JupyterLab URL supplied by a process inside the Codespace without validating that it is a loopback HTTP or HTTPS address, allowing a crafted vscode:// or vscode-insiders:// URL to be handed to VS Code. This issue is fixed in version 2.96.0.

CWE CWE-829
Vendor cli
Product cli
Published Jul 9, 2026
Last Updated Jul 14, 2026
Stay Ahead of the Next One

Get instant alerts for cli cli

Be the first to know when new medium vulnerabilities affecting cli cli are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
High
Privileges Required
Low
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
None

Affected Versions

cli / cli
>= 2.10.0, < 2.96.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗
github.com: https://github.com/cli/cli/security/advisories/GHSA-8cg3-r6g9-fpg2 github.com: https://github.com/cli/cli/commit/b300f2ec7ec9dc9addc39b2ad88c54097ded7ca0 github.com: https://github.com/cli/cli/releases/tag/v2.96.0