CVE-2020-10519 Unsafe configuration options in GitHub Pages leading to remote code execution on GitHub Enterprise Server

🗓️ 03 Mar 2021 03:25:21Reported by GitHub_PType

Remote code execution vulnerability in GitHub Enterprise Server due to unsafe GitHub Pages configuratio

Reporter	Title	Published	Views	Family All 7
CNNVD	GitHub 命令注入漏洞	3 Mar 202100:00	–	cnnvd
CVE	CVE-2020-10519	3 Mar 202103:25	–	cve
EUVD	EUVD-2020-2972	7 Oct 202500:30	–	euvd
NVD	CVE-2020-10519	3 Mar 202104:15	–	nvd
OSV	CVE-2020-10519	3 Mar 202104:15	–	osv
Prion	Remote code execution	3 Mar 202104:15	–	prion
RedhatCVE	CVE-2020-10519	9 Jan 202609:50	–	redhatcve

[
  {
    "product": "GitHub Enterprise Server",
    "vendor": "GitHub",
    "versions": [
      {
        "lessThan": "2.20.24",
        "status": "affected",
        "version": "2.20",
        "versionType": "custom"
      },
      {
        "lessThan": "2.21.15",
        "status": "affected",
        "version": "2.21",
        "versionType": "custom"
      },
      {
        "lessThan": "2.22.7",
        "status": "affected",
        "version": "2.22",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
docs	www.docs.github.com/en/enterprise-server%402.21/admin/release-notes
docs	www.docs.github.com/en/enterprise-server%402.22/admin/release-notes
docs	www.docs.github.com/en/enterprise-server%402.20/admin/release-notes

03 Mar 2021 03:25Current

9High risk

Vulners AI Score9

EPSS0.02993

CWE-77