—
GO-2026-5392
BoxLite: Permission Bypass Allows Modification of Read-Only Files in github.com/boxlite-ai/boxlite/sdks/go
Details
BoxLite: Permission Bypass Allows Modification of Read-Only Files in github.com/boxlite-ai/boxlite/sdks/go
Are you affected?
Enter the version of the package you're using.
Affected packages
Go / github.com/boxlite-ai/boxlite/sdks/go
Introduced in:
0 Fixed in: 0.9.0 Fix
go get github.com/boxlite-ai/boxlite/sdks/go@v0.9.0 References
- https://github.com/boxlite-ai/boxlite/security/advisories/GHSA-g6ww-w5j2-r7x3 [ADVISORY]
- https://nvd.nist.gov/vuln/detail/CVE-2026-46695 [ADVISORY]
- https://github.com/boxlite-ai/boxlite/pull/454 [WEB]
- https://github.com/boxlite-ai/boxlite/releases/tag/v0.9.0 [WEB]
- https://rustsec.org/advisories/RUSTSEC-2026-0147.html [WEB]