Main Vulnerability Database Vulnerabilities #VU105790

#VU105790 Embedded malicious code (backdoor) in changed-files - CVE-2025-30066

Published: March 17, 2025 / Updated: March 18, 2025

Vulnerability identifier: #VU105790

Vulnerability risk: High

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:A/U:Amber

CVE-ID: CVE-2025-30066

CWE-ID: CWE-506

Exploitation vector: Remote access

Exploit availability: The vulnerability is being exploited in the wild

Vulnerable software:
changed-files

Software vendor:
tj-actions

Description

The vulnerability allows a remote attacker to gain unauthorized access to sensitive information.

The vulnerability exists due to presence of embedded malicious functionality in the application code (aka backdoor). A remote attacker can discover secrets by reading actions logs.

Note, the vulnerability is being exploited in the wild.

Remediation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

#VU105790 Embedded malicious code (backdoor) in changed-files - CVE-2025-30066

Description

Remediation

External links

Please verify you're human