Browse all 3 CVE security advisories affecting nektos. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-34042 | act: actions/cache server allows malicious cache injection — actCWE-862 | 8.2 | High | 2026-03-31 |
| CVE-2026-34041 | act: Unrestricted set-env and add-path command processing enables environment injection — actCWE-74 | 7.1AI | HighAI | 2026-03-31 |
| CVE-2023-22726 | Unrestricted file upload leading to privilege escalation in act — actCWE-434 | 8.0 | High | 2023-01-20 |
This page lists every published CVE security advisory associated with nektos. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.