3 matches found
CVE-2023-23764
An incorrect comparison vulnerability was identified in GitHub Enterprise Server that allowed commit smuggling by displaying an incorrect diff within the GitHub pull request UI. To do so, an attacker would need write access to the repository. This vulnerability affected GitHub Enterprise Server...
CVE-2023-23764
CVE-2023-23764 affects GitHub Enterprise Server (versions 3.7.0 and later) with an incorrect comparison in the PR UI that could enable commit smuggling by displaying an incorrect diff. Exploitation requires write access to the target repository. Affected versions were fixed in 3.7.9, 3.8.2, and 3...
CVE-2023-23764 Incorrect comparison vulnerability in GitHub Enterprise Server leading to commit smuggling
An incorrect comparison vulnerability was identified in GitHub Enterprise Server that allowed commit smuggling by displaying an incorrect diff within the GitHub pull request UI. To do so, an attacker would need write access to the repository. This vulnerability affected GitHub Enterprise Server...