3 matches found
CVE-2020-10517
An improper access control vulnerability was identified in GitHub Enterprise Server that allowed authenticated users of the instance to determine the names of unauthorized private repositories given their numerical IDs. This vulnerability did not allow unauthorized access to any repository conten...
CVE-2020-10517 Improper access control in GitHub Enterprise Server leading to the enumeration of private repository names
An improper access control vulnerability was identified in GitHub Enterprise Server that allowed authenticated users of the instance to determine the names of unauthorized private repositories given their numerical IDs. This vulnerability did not allow unauthorized access to any repository conten...
CVE-2020-10517
Summary: CVE-2020-10517 is an improper access control flaw in GitHub Enterprise Server that lets authenticated users determine the names of unauthorized private repositories by numeric IDs, but not their content. Affected versions: all prior to 2.22. Fixed in 2.21.6, 2.20.15, and 2.19.21. The vul...