GitHub: [PATs] Token with Read-Only permissions on Issues able to modify issue comments using content write permission

An incorrect authorization vulnerability was identified in GitHub Enterprise Server that allowed issue comments to be updated with an improperly scoped token...