Skip to content

code injection vulnerability exists in the huggingface/text-generation-inference repository

Moderate severity GitHub Reviewed Published Jun 2, 2024 to the GitHub Advisory Database • Updated Jun 2, 2024

Package

pip text-generation (pip)

Affected versions

< 2.0.0

Patched versions

2.0.0

Description

A code injection vulnerability exists in the huggingface/text-generation-inference repository, specifically within the autodocs.yml workflow file. The vulnerability arises from the insecure handling of the github.head_ref user input, which is used to dynamically construct a command for installing a software package. An attacker can exploit this by forking the repository, creating a branch with a malicious payload as the name, and then opening a pull request to the base repository. Successful exploitation could lead to arbitrary code execution within the context of the GitHub Actions runner. This issue affects versions up to and including v2.0.0 and was fixed in version 2.0.0.

References

Published by the National Vulnerability Database May 30, 2024
Published to the GitHub Advisory Database Jun 2, 2024
Reviewed Jun 2, 2024
Last updated Jun 2, 2024

Severity

Moderate
4.4
/ 10

CVSS base metrics

Attack vector
Network
Attack complexity
High
Privileges required
Low
User interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
None
CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N

Weaknesses

CVE ID

CVE-2024-3924

GHSA ID

GHSA-qq99-p57r-g3v7

Source code

Loading Checking history
See something to contribute? Suggest improvements for this vulnerability.