CVE-2026-41414

CVE-2026-41414

Name

CVE-2026-41414

Description

Skim is a fuzzy finder designed to through files, lines, and commands. The generate-files job in .github/workflows/pr.yml checks out attacker-controlled fork code and executes it via cargo run, with access to SKIM_RS_BOT_PRIVATE_KEY and GITHUB_TOKEN (contents:write). No gates prevent exploitation - any GitHub user can trigger this by opening a pull request from a fork. This vulnerability is fixed with commit bf63404ad51985b00ed304690ba9d477860a5a75.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
security-advisories@github.com	https://github.com/skim-rs/skim/commit/bf63404ad51985b00ed304690ba9d477860a5a75
security-advisories@github.com	https://github.com/skim-rs/skim/security/advisories/GHSA-9g93-rxr5-xhqw
134c704f-9b21-4f2e-91b3-4a467353bcc0	https://drive.google.com/file/d/1Gj7ziTK42YWXYoQgTbis_rMitHR59J6F/view

Type

URI

security-advisories@github.com

https://github.com/skim-rs/skim/commit/bf63404ad51985b00ed304690ba9d477860a5a75

security-advisories@github.com

https://github.com/skim-rs/skim/security/advisories/GHSA-9g93-rxr5-xhqw

134c704f-9b21-4f2e-91b3-4a467353bcc0

https://drive.google.com/file/d/1Gj7ziTK42YWXYoQgTbis_rMitHR59J6F/view

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:skim-rs:skim::::::rust::*`	skim	>= None	< 4.6.1

CPE URI

Source package

Min version

Max version

cpe:2.3:a:skim-rs:skim:*:*:*:*:*:rust:*:*

skim

>= None

< 4.6.1

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
skim	edge-community	0.20.5-r0	omni <omni+alpine@hack.org>	possibly vulnerable
skim	edge-community	0.20.4-r0	omni <omni+alpine@hack.org>	possibly vulnerable
skim	edge-community	0.20.3-r0	omni <omni+alpine@hack.org>	possibly vulnerable
skim	edge-community	0.20.2-r0	omni <omni+alpine@hack.org>	possibly vulnerable
skim	edge-community	0.20.1-r0	omni <omni+alpine@hack.org>	possibly vulnerable
skim	edge-community	0.17.3-r0	omni <omni+alpine@hack.org>	possibly vulnerable
skim	edge-community	0.17.2-r0	omni <omni+alpine@hack.org>	possibly vulnerable
skim	edge-community	0.16.2-r0	omni <omni+alpine@hack.org>	possibly vulnerable
skim	edge-community	0.16.1-r0	omni <omni+alpine@hack.org>	possibly vulnerable
skim	edge-community	0.16.0-r0	omni <omni+alpine@hack.org>	possibly vulnerable
skim	edge-community	0.15.7-r0	omni <omni+alpine@hack.org>	possibly vulnerable
skim	edge-community	0.15.5-r0	omni <omni+alpine@hack.org>	possibly vulnerable
skim	3.23-community	0.20.5-r0	omni <omni+alpine@hack.org>	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

skim

edge-community

0.20.5-r0

omni <omni+alpine@hack.org>

possibly vulnerable

skim

edge-community