CVE-2025-58401 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Obsidian GitHub Copilot Plugin versions prior to 1.1.7 store Github API token in cleartext form. As a result, an attacker may perform unauthorized operations on…
Medium CVSS: 5.1

CVE-2025-58401

Obsidian GitHub Copilot Plugin versions prior to 1.1.7 store Github API token in cleartext form. As a result, an attacker may perform unauthorized operations on the linked Github account.
Vendor
-
Product
-
CWE
CWE-312
Yayın Tarihi
2025-09-05 05:15:29
Güncelleme
2025-09-05 17:47:10
Source Identifier
vultures@jpcert.or.jp
KEV Date Added
-

Kategoriler

CWE-312 MEDIUM 2025

Referanslar

https://github.com/Pierrad/obsidian-github-copilot/releases/tag/1.1.7 https://jvn.jp/en/jp/JVN41633999/