What is GHSA-vg4w-v23f-w7r7?

GHSA-vg4w-v23f-w7r7 is a security advisory published by GitHub Security Advisories with Medium severity. CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that could cause the...

Which CVE IDs does GHSA-vg4w-v23f-w7r7 cover?

GHSA-vg4w-v23f-w7r7 covers the following CVE IDs: CVE-2026-6332. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-vg4w-v23f-w7r7?

GHSA-vg4w-v23f-w7r7 has a CVSS v3 base score of 7.5, published by GitHub Security Advisories.

GHSA-vg4w-v23f-w7r7MediumCVSS 7.5

CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that could cause the...

Vendor

GitHub Security Advisories

Published

May 14, 2026

Last Modified

May 27, 2026

🔗 CVE IDs covered (1)

CVE-2026-6332 →

📋 Description

CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that could cause the disclosure of a sensitive information which could result in revealing protected source code and loss of confidentiality, When an authorized attacker accesses the source code for editing or compiling it.

🔗 References (3)

https://nvd.nist.gov/vuln/detail/CVE-2026-6332
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2026-132-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2026-132-01.pdf
https://github.com/advisories/GHSA-vg4w-v23f-w7r7