Enterprise Server Security Vulnerabilities and Issues — Enterprise Server CVE List

Lucene search

GithubEnterprise Server

3 matches found

CVE•added 2023/03/07 5:15 p.m.•62 views

CVE-2022-46257

An information disclosure vulnerability was identified in GitHub Enterprise Server that allowed private repositories to be added to a GitHub Actions runner group via the API by a user who did not have access to those repositories, resulting in the repository names being shown in the UI. To exploit ...

4.3CVSS4.2AI score0.00051EPSS

CVE•added 2023/03/02 9:15 p.m.•55 views

CVE-2023-22381

A code injection vulnerability was identified in GitHub Enterprise Server that allowed setting arbitrary environment variables from a single environment variable value in GitHub Actions when using a Windows based runner. To exploit this vulnerability, an attacker would need existing permission to c...

8.8CVSS6.6AI score0.00111EPSS

CVE•added 2023/03/08 7:15 p.m.•43 views

CVE-2023-23760

A path traversal vulnerability was identified in GitHub Enterprise Server that allowed remote code execution when building a GitHub Pages site. To exploit this vulnerability, an attacker would need permission to create and build a GitHub Pages site on the GitHub Enterprise Server instance. This vul...

8.8CVSS7.2AI score0.00429EPSS