Live Feed

Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push - The Hacker News

Reported by The Hacker News | April 28, 2026, 6:19 pm

Article Image

CVE-2026-3854 (CVSS 8.7) enabled GitHub RCE via git push, risking cross-tenant access to millions of repositories.

Cybersecurity researchers have disclosed details of a critical security vulnerability impacting GitHub.com and GitHub Enterprise Server that could allow an authenticated user to obtain remote code ex…

Want to read the full report?

You are viewing a syndication snippet provided by the publisher via NewsAPI.

Read Full Story on Publisher Site ↗