Lucene search

K

CVE-2022-46258

🗓️ 09 Jan 2023 17:10:15Reported by GitHub_PType 
cve
 cve
🔗 web.nvd.nist.gov👁 35 Views

Incorrect authorization in GitHub Enterprise Server, allowing repository-scoped token to modify Action Workflow files without Workflow scope

Show more
Related
Detection
Affected
Refs
Nvd
Vulners
Node
OR
githubenterprise_serverRange3.4.03.4.11
OR
githubenterprise_serverRange3.5.03.5.8
OR
githubenterprise_serverRange3.6.03.6.4
[
  {
    "vendor": "GitHub",
    "product": "GitHub Enterprise Server",
    "versions": [
      {
        "version": "3.3",
        "status": "affected",
        "lessThan": "3.3.16",
        "versionType": "custom"
      },
      {
        "version": "3.4",
        "status": "affected",
        "lessThan": "3.4.11",
        "versionType": "custom"
      },
      {
        "version": "3.5",
        "status": "affected",
        "lessThan": "3.5.8",
        "versionType": "custom"
      },
      {
        "version": "3.6",
        "status": "affected",
        "lessThan": "3.6.4",
        "versionType": "custom"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo