Git-tag-annotation-action Project Git-tag-annotation-action — known CVE vulnerabilities
Every CVE whose affected-product data names Git-tag-annotation-action Project Git-tag-annotation-action, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2020-15272 — CVSS 8.7 (high): In the git-tag-annotation-action (open source GitHub Action) before version 1.0.1, an attacker can execute arbitrary (*) shell commands if…