Enterprise Server Security Vulnerabilities and Issues — Enterprise Server CVE List

Lucene search

GithubEnterprise Server

3 matches found

cve•added 2024/11/07 10:15 p.m.•58 views

CVE-2024-8810

A GitHub App installed in organizations could upgrade some permissions from read to write access without approval from an organization administrator. An attacker would require an account with administrator access to install a malicious GitHub App. This vulnerability affected all versions of GitHub ...

8.7CVSS6.3AI score0.00123EPSS

cve•added 2024/11/07 10:15 p.m.•43 views

CVE-2024-10824

An authorization bypass vulnerability was identified in GitHub Enterprise Server that allowed unauthorized internal users to access sensitive secret scanning alert data intended only for business owners. This issue could be exploited only by organization members with a personal access token (PAT) a...

6CVSS6.3AI score0.00094EPSS

cve•added 2024/11/07 9:15 p.m.•41 views

CVE-2024-10007

A path collision and arbitrary code execution vulnerability was identified in GitHub Enterprise Server that allowed container escape to escalate to root via ghe-firejail path. Exploitation of this vulnerability requires Enterprise Administrator access to the GitHub Enterprise Server instance. This ...

8.7CVSS7.4AI score0.00051EPSS