{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-41414", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-04-20T15:32:33.812Z", "datePublished": "2026-04-24T18:32:36.283Z", "dateUpdated": "2026-04-27T13:45:23.120Z"}, "containers": {"cna": {"title": "Skim: Arbitrary code execution via pull_request_target fork checkout in pr.yml", "problemTypes": [{"descriptions": [{"cweId": "CWE-94", "lang": "en", "description": "CWE-94: Improper Control of Generation of Code ('Code Injection')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/skim-rs/skim/security/advisories/GHSA-9g93-rxr5-xhqw", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/skim-rs/skim/security/advisories/GHSA-9g93-rxr5-xhqw"}, {"name": "https://github.com/skim-rs/skim/commit/bf63404ad51985b00ed304690ba9d477860a5a75", "tags": ["x_refsource_MISC"], "url": "https://github.com/skim-rs/skim/commit/bf63404ad51985b00ed304690ba9d477860a5a75"}], "affected": [{"vendor": "skim-rs", "product": "skim", "versions": [{"version": "< bf63404ad51985b00ed304690ba9d477860a5a75", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-04-24T18:32:36.283Z"}, "descriptions": [{"lang": "en", "value": "Skim is a fuzzy finder designed to through files, lines, and commands. The generate-files job in .github/workflows/pr.yml checks out attacker-controlled fork code and executes it via cargo run, with access to SKIM_RS_BOT_PRIVATE_KEY and GITHUB_TOKEN (contents:write). No gates prevent exploitation - any GitHub user can trigger this by opening a pull request from a fork. This vulnerability is fixed with commit bf63404ad51985b00ed304690ba9d477860a5a75."}], "source": {"advisory": "GHSA-9g93-rxr5-xhqw", "discovery": "UNKNOWN"}}, "adp": [{"references": [{"url": "https://github.com/skim-rs/skim/security/advisories/GHSA-9g93-rxr5-xhqw", "tags": ["exploit"]}, {"url": "https://drive.google.com/file/d/1Gj7ziTK42YWXYoQgTbis_rMitHR59J6F/view", "tags": ["exploit"]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-27T13:45:19.315419Z", "id": "CVE-2026-41414", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-27T13:45:23.120Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-41414", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-27T13:45:19.315419Z"}}}], "references": [{"url": "https://github.com/skim-rs/skim/security/advisories/GHSA-9g93-rxr5-xhqw", "tags": ["exploit"]}, {"url": "https://drive.google.com/file/d/1Gj7ziTK42YWXYoQgTbis_rMitHR59J6F/view", "tags": ["exploit"]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-27T13:45:14.144Z"}}], "cna": {"title": "Skim: Arbitrary code execution via pull_request_target fork checkout in pr.yml", "source": {"advisory": "GHSA-9g93-rxr5-xhqw", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.4, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "skim-rs", "product": "skim", "versions": [{"status": "affected", "version": "< bf63404ad51985b00ed304690ba9d477860a5a75"}]}], "references": [{"url": "https://github.com/skim-rs/skim/security/advisories/GHSA-9g93-rxr5-xhqw", "name": "https://github.com/skim-rs/skim/security/advisories/GHSA-9g93-rxr5-xhqw", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/skim-rs/skim/commit/bf63404ad51985b00ed304690ba9d477860a5a75", "name": "https://github.com/skim-rs/skim/commit/bf63404ad51985b00ed304690ba9d477860a5a75", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "Skim is a fuzzy finder designed to through files, lines, and commands. The generate-files job in .github/workflows/pr.yml checks out attacker-controlled fork code and executes it via cargo run, with access to SKIM_RS_BOT_PRIVATE_KEY and GITHUB_TOKEN (contents:write). No gates prevent exploitation - any GitHub user can trigger this by opening a pull request from a fork. This vulnerability is fixed with commit bf63404ad51985b00ed304690ba9d477860a5a75."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-94", "description": "CWE-94: Improper Control of Generation of Code ('Code Injection')"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-04-24T18:32:36.283Z"}}}, "cveMetadata": {"cveId": "CVE-2026-41414", "state": "PUBLISHED", "dateUpdated": "2026-04-27T13:45:23.120Z", "dateReserved": "2026-04-20T15:32:33.812Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-04-24T18:32:36.283Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:skim-rs:skim:*:*:*:*:*:rust:*:*", "matchCriteriaId": "C3FDFA7B-CF76-465F-A354-91CDD67988F7", "versionEndExcluding": "4.6.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Skim is a fuzzy finder designed to through files, lines, and commands. The generate-files job in .github/workflows/pr.yml checks out attacker-controlled fork code and executes it via cargo run, with access to SKIM_RS_BOT_PRIVATE_KEY and GITHUB_TOKEN (contents:write). No gates prevent exploitation - any GitHub user can trigger this by opening a pull request from a fork. This vulnerability is fixed with commit bf63404ad51985b00ed304690ba9d477860a5a75."}], "id": "CVE-2026-41414", "lastModified": "2026-05-01T19:03:15.480", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 4.0, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-04-24T19:17:13.020", "references": [{"source": "security-advisories@github.com", "tags": ["Patch"], "url": "https://github.com/skim-rs/skim/commit/bf63404ad51985b00ed304690ba9d477860a5a75"}, {"source": "security-advisories@github.com", "tags": ["Third Party Advisory"], "url": "https://github.com/skim-rs/skim/security/advisories/GHSA-9g93-rxr5-xhqw"}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "tags": ["Exploit"], "url": "https://drive.google.com/file/d/1Gj7ziTK42YWXYoQgTbis_rMitHR59J6F/view"}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "tags": ["Third Party Advisory"], "url": "https://github.com/skim-rs/skim/security/advisories/GHSA-9g93-rxr5-xhqw"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "security-advisories@github.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[0,<bf63404ad51985b00ed304690ba9d477860a5a75)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "skim", "source": "cna", "vendor": "skim-rs"}, "product": "skim", "vendor": "skim-rs"}], "analysis": {"en": {"generated_at": "2026-04-28T05:53:49.530597+00:00", "value": {"mitigation_remediation": ["Update Skim to a fixed version that includes commit bf63404ad51985b00ed304690ba9d477860a5a75, ensuring the repository\u2019s workflow file is replaced.", "If the older workflow must remain, modify the GitHub Actions configuration so that the generate\u2011files job runs only on pull_request events (not pull_request_target) or add a guard that refuses checkouts from non\u2011trusted forks.", "Limit the permissions of GITHUB_TOKEN in the workflow to contents:read and remove the SKIM_RS_BOT_PRIVATE_KEY from the environment, or use a dedicated, least\u2011privileged token.", "Monitor workflow execution logs for unexpected commands and consider disabling the generate\u2011files job until the update is applied."], "summary": {"action": "Immediate patch", "impact": "Arbitrary code execution"}, "threat_synthesis": {"affected_systems": "Skim is an open\u2011source fuzzy finder maintained under skim-rs/skim. The affected component is the repository\u2019s GitHub Actions workflow file pr.yml, which is part of every release of the project. No specific product release version number is listed in the advisory; the issue is fixed by the commit bf63404ad51985b00ed304690ba9d477860a5a75. Administrators using any version predating this commit are vulnerable.", "description_and_impact": "The vulnerability allows an attacker to execute arbitrary code within the CI environment of the Skim repository. The flaw resides in the generate-files job of the GitHub Actions workflow pr.yml, where code from an attacker\u2011controlled fork is uncheckedly checked out and run with cargo run, giving the process the SKIM_RS_BOT_PRIVATE_KEY and a GITHUB_TOKEN with contents:write permissions. This is a classic CWE\u201194 scripting or code injection flaw. Successful exploitation would give the attacker full control over the CI run, enabling arbitrary command execution, secrets exfiltration, or deployment of malicious binaries.", "risk_and_exploitability": "The CVSS base score of 7.4 indicates a high\u2011severity vulnerability. The EPSS score is reported as < 1\u202f%, implying that exploitation attempts are currently rare, and the vulnerability is not listed in the CISA KEV catalog. Nevertheless, the attack vector is server\u2011side code execution via GitHub Actions, which can be triggered by any public user submitting a pull request from a fork. Since the workflow runs with elevated tokens, the likelihood of an attacker successfully abusing it is high if an organization relies on the workflow unchanged. The lack of gates or checks means exploitation requires no additional privileges beyond authoring a fork."}}}}, "created": "2026-04-27T20:20:41.555669+00:00", "updated": "2026-04-28T06:00:09.604186+00:00", "vendors": ["skim-rs", "skim-rs$PRODUCT$skim"]}