CVE-2025-47271

The OZI action is a GitHub Action that publishes releases to PyPI and mirror releases, signature bundles, and provenance in a tagged release. In versions 1.13.2 through 1.13.5, potentially untrusted data flows into PR creation logic. A malicious actor could construct a branch name that injects arbitrary code. This is patched in 1.13.6. As a workaround, one may downgrade to a version prior to 1.13.2.

CVSS

No CVSS.

References

Link	Resource
https://github.com/OZI-Project/publish/commit/abd8524ec69800890529846b3ccfb09ce7c10b5c
https://github.com/OZI-Project/publish/security/advisories/GHSA-2487-9f55-2vg9

Configurations

No configuration.

History

15 Apr 2026, 00:35

Type	Values Removed	Values Added
Summary		(es) La acción OZI es una acción de GitHub que publica versiones en PyPI y versiones espejo, paquetes de firmas y procedencia en una versión etiquetada. En las versiones 1.13.2 a 1.13.5, datos potencialmente no confiables fluyen a la lógica de creación de solicitudes de incorporación de cambios (PR). Un agente malicioso podría crear un nombre de rama que inyecte código arbitrario. Esto se solucionó en la versión 1.13.6. Como workaround, se puede actualizar a una versión anterior a la 1.13.2.

12 May 2025, 11:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-05-12 11:15

Updated : 2026-04-15 00:35

NVD link : CVE-2025-47271

Mitre link : CVE-2025-47271

CVE.ORG link : CVE-2025-47271

JSON object : View

Products Affected

No product.

CWE

CWE-94

Improper Control of Generation of Code ('Code Injection')

CWE-95

Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')

CWE-1116

Inaccurate Comments

{"id": "CVE-2025-47271", "cveTags": [], "metrics": {"cvssMetricV40": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 6.3, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "exploitMaturity": "UNREPORTED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "LOW", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2025-05-12T11:15:51.190", "references": [{"url": "https://github.com/OZI-Project/publish/commit/abd8524ec69800890529846b3ccfb09ce7c10b5c", "source": "security-advisories@github.com"}, {"url": "https://github.com/OZI-Project/publish/security/advisories/GHSA-2487-9f55-2vg9", "source": "security-advisories@github.com"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-94"}, {"lang": "en", "value": "CWE-95"}, {"lang": "en", "value": "CWE-1116"}]}], "descriptions": [{"lang": "en", "value": "The OZI action is a GitHub Action that publishes releases to PyPI and mirror releases, signature bundles, and provenance in a tagged release. In versions 1.13.2 through 1.13.5, potentially untrusted data flows into PR creation logic. A malicious actor could construct a branch name that injects arbitrary code. This is patched in 1.13.6. As a workaround, one may downgrade to a version prior to 1.13.2."}, {"lang": "es", "value": "La acci\u00f3n OZI es una acci\u00f3n de GitHub que publica versiones en PyPI y versiones espejo, paquetes de firmas y procedencia en una versi\u00f3n etiquetada. En las versiones 1.13.2 a 1.13.5, datos potencialmente no confiables fluyen a la l\u00f3gica de creaci\u00f3n de solicitudes de incorporaci\u00f3n de cambios (PR). Un agente malicioso podr\u00eda crear un nombre de rama que inyecte c\u00f3digo arbitrario. Esto se solucion\u00f3 en la versi\u00f3n 1.13.6. Como workaround, se puede actualizar a una versi\u00f3n anterior a la 1.13.2."}], "lastModified": "2026-04-15T00:35:42.020", "sourceIdentifier": "security-advisories@github.com"}