CVE-2025-59844 | sonarqube-scan-action up to 5.x os command injection (GHSA-5xq9-5g24-4g6f)

A vulnerability, which was classified as critical, has been found in sonarqube-scan-action up to 5.x. This vulnerability affects unknown code. This manipulation causes os command injection.

This vulnerability is handled as CVE-2025-59844. The attack can be initiated remotely. There is not any exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More