Lucene search

Ahacker1H1:2484635

HistoryApr 30, 2024 - 11:55 p.m.

GitHub: GitHub Apps can access suspended installations via scoped user-to-server tokens

2024-04-3023:55:24

ahacker1

hackerone.com

$4000

github

apps

unauthorized access

vulnerability

fix

user access token

public repositories

private repositories

github enterprise server

cve-2024-5816

bug bounty

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CVSS4

6.9

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

ACTIVE

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/SC:N/VI:H/SI:H/VA:N/SA:N

AI Score

6.6

Confidence

High

EPSS

0.001

Percentile

25.6%

JSON

An Incorrect Authorization vulnerability was identified in GitHub Enterprise Server that allowed a suspended GitHub App to retain access to the repository via a scoped user access token. This was only exploitable in public repositories while private repositories were not impacted. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.14 and was fixed in versions 3.9.17, 3.10.14, 3.11.12, 3.12.6, 3.13.1.

CVE-2024-5816

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CVSS4

6.9

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

ACTIVE

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/SC:N/VI:H/SI:H/VA:N/SA:N

AI Score

6.6

Confidence

High

EPSS

0.001

Percentile

25.6%

JSON

Related for H1:2484635