Security Advisory

CVE-2024-48908

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-28 14:56:43

Last updated 2025-08-28 20:11:46

Assigner GitHub_M

State PUBLISHED

Description

lychee link checking action checks links in Markdown, HTML, and text files using lychee. Prior to version 2.0.2, there is a potential attack of arbitrary code injection vulnerability in lychee-setup of the composite action at action.yml. This issue has been patched in version 2.0.2.

← Browse all CVEs View on cve.org ↗