CVE-2025-48064

May 21, 2025 invoker category_cve

CVE Details

Basic Information

Title CVE-2025-48064
Type cve
Published 2025-05-21T18:15:53
Last Seen 2025-05-21T18:29:56

CVSS Information

Base Score 3.3 (LOW)
Attack Vector LOCAL
Attack Complexity LOW
Privileges Required NONE
User Interaction REQUIRED
Scope UNCHANGED
Confidentiality Impact LOW
Integrity Impact NONE
Availability Impact NONE

AI Analysis

AI Description A vulnerability in GitHub Desktop prior to version 3.4.20-beta3 allows an attacker to execute arbitrary code by convincing a user to view a malicious file in a commit history. This could lead to local code execution.
AI Severity Low
Vendor Microsoft
Product GitHub Desktop
Affected Version 3.4.20-beta3

Additional Information

CVE List CVE-2025-48064
CWE List CWE-200
Bulletin Family cve

Description

GitHub Desktop is an open-source, Electron-based GitHub app designed for git development. Prior to version 3.4.20-beta3, an attacker convincing a user to view a file in a commit of their making in the history…

CVSS Score Summary

Base Score: %!f(string=#) (LOW)

View Full CVE Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.