Vulnerability Details CVE-2025-47775
Bullfrog is a GithHb Action to block unauthorized outbound traffic in GitHub workflows. Prior to version 0.8.4, using tcp breaks blocking and allows DNS exfiltration. This can result in sandbox bypass. Version 0.8.4 fixes the issue.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 14.5%
CVSS Severity
CVSS v3 Score 6.2
References
- https://github.com/bullfrogsec/bullfrog/commit/ae7744ae4b3a6f8ffc2e49f501e30bf1a43d4671
- https://github.com/bullfrogsec/bullfrog/releases/tag/v0.8.4
- https://github.com/bullfrogsec/bullfrog/security/advisories/GHSA-m32f-fjw2-37v3
- https://github.com/bullfrogsec/bullfrog/security/advisories/GHSA-m32f-fjw2-37v3
Products affected by CVE-2025-47775
-
cpe:2.3:a:bullfrogsec:bullfrog:-
-
cpe:2.3:a:bullfrogsec:bullfrog:0.3
-
cpe:2.3:a:bullfrogsec:bullfrog:0.4
-
cpe:2.3:a:bullfrogsec:bullfrog:0.4.1
-
cpe:2.3:a:bullfrogsec:bullfrog:0.5
-
cpe:2.3:a:bullfrogsec:bullfrog:0.5.0
-
cpe:2.3:a:bullfrogsec:bullfrog:0.5.1
-
cpe:2.3:a:bullfrogsec:bullfrog:0.5.2
-
cpe:2.3:a:bullfrogsec:bullfrog:0.5.3
-
cpe:2.3:a:bullfrogsec:bullfrog:0.5.4
-
cpe:2.3:a:bullfrogsec:bullfrog:0.5.5
-
cpe:2.3:a:bullfrogsec:bullfrog:0.6
-
cpe:2.3:a:bullfrogsec:bullfrog:0.6.0
-
cpe:2.3:a:bullfrogsec:bullfrog:0.6.1
-
cpe:2.3:a:bullfrogsec:bullfrog:0.6.2
-
cpe:2.3:a:bullfrogsec:bullfrog:0.7
-
cpe:2.3:a:bullfrogsec:bullfrog:0.7.0
-
cpe:2.3:a:bullfrogsec:bullfrog:0.8
-
cpe:2.3:a:bullfrogsec:bullfrog:0.8.0
-
cpe:2.3:a:bullfrogsec:bullfrog:0.8.1
-
cpe:2.3:a:bullfrogsec:bullfrog:0.8.2
-
cpe:2.3:a:bullfrogsec:bullfrog:0.8.3