16 matches found
CVE-2022-23733
CVE-2022-23733 is a stored XSS vulnerability in GitHub Enterprise Server affecting all versions prior to 3.6. The issue allows injection of arbitrary attributes, with exploitation blocked by GitHub’s CSP. Remediation released in versions 3.3.11, 3.4.6, and 3.5.3. NVD metrics list CVSS 3.1 base sc...
CVE-2024-2440
A race condition in GitHub Enterprise Server allowed an existing admin to retain permissions on a detached repository by issuing a GraphQL mutation to alter repository permissions while the repository was detached. Affected: all GitHub Enterprise Server versions prior to 3.13. Fixes are available...
CVE-2022-23738
CVE-2022-23738 affects GitHub Enterprise Server. The issue is an improper cache key vulnerability that could allow an unauthorized actor to access private repository files through a public repository, given the actor is already authorized on the server, can create a public repository, and a site ...
CVE-2023-46646
CVE-2023-46646 describes improper access control in GitHub Enterprise Server: unauthorized users could view only private repository names via the Get a check run API endpoint, not repository content. Affected: GitHub Enterprise Server versions 3.7.0 and above. Fixed in multiple maintenance releas...
CVE-2025-3124
CVE-2025-3124 concerns a missing authorization vulnerability in GitHub Enterprise Server that allowed a user to see the names of private repositories they otherwise wouldn’t access via the Security Overview in GitHub Advanced Security. The issue affected all versions prior to 3.17 and was fixed i...
CVE-2024-7711
CVE-2024-7711 is an Incorrect Authorization vulnerability in GitHub Enterprise Server that allowed an attacker to update the title, assignees, and labels of any issue inside a public repository, and was exploitable only within public repos. Affected products: GitHub Enterprise Server versions bef...
CVE-2024-9539
CVE-2024-9539 affects GitHub Enterprise Server prior to 3.14, where an information-disclosure flaw allowed an attacker to retrieve a user’s metadata by triggering via an uploaded asset URL (involving malicious SVG files) and then craft phishing pages. The vulnerability is fixed in 3.14.2, and als...
CVE-2023-23763
CVE-2023-23763 (GitHub Enterprise Server) describes an authorization/sensitive information disclosure vulnerability where a fork could retain read access to an upstream repository after its visibility was set to private. Affected versions are all prior to 3.10.0. Fixed releases are 3.9.4, 3.8.9, ...
CVE-2023-6803
GitHub Enterprise Server contains a race condition vulnerability that can permit an outside collaborator to be added while a repository is being transferred. Affected software: GitHub Enterprise Server (all versions since 3.8). Root cause: race condition during repository transfer. Impact: potent...
CVE-2025-6981
CVE-2025-6981 describes an incorrect authorization vulnerability in GitHub Enterprise Server that allowed unauthorized read access to internal repositories for contractor accounts when the Contractors API feature was enabled. The issue affected all versions prior to 3.18 and has been fixed in ver...
CVE-2026-3306
CVE-2026-3306 describes an improper authorization in GitHub Enterprise Server where a user with read access to a repository and write access to a project could modify issue and pull request metadata via the project without repository write permissions being verified during column value updates. T...
CVE-2026-3307
GitHub Enterprise Server vulnerability CVE-2026-3307 allows an admin on one repository to modify the secret scanning push protection delegated bypass reviewers for another repository by changing the owner_id in the request body. Authorization is checked against the URL repository, but the action ...
CVE-2026-5512
CVE-2026-5512 describes an improper authorization vulnerability in GitHub Enterprise Server where an authenticated attacker could determine private repository names by numeric ID via the mobile upload policy API endpoint. The issue arises from a failure to perform an early authorization check and...
CVE-2026-9106
The CVE-2026-9106 issue concerns GitHub Enterprise Server where a UI misrepresentation allowed an OAuth app to gain unauthorized access to an organization’s runner management. A victim could be tricked into authorizing an app requesting the manage_runners:org scope because the scope was not shown...
CVE-2026-14340
GitHub Enterprise Server (GitHub ES) suffers an incorrect authorization vulnerability (CVE-2026-14340) where a user-to-server token scoped to a GitHub App installation could perform write operations on public repositories outside the token’s scope. The root cause is an authorization check that on...
CVE-2026-3582
CVE-2026-3582 affects GitHub Enterprise Server. An Incorrect Authorization vulnerability allowed an authenticated user with a classic PAT lacking the repo scope to retrieve issues and commits from private/internal repositories via the search REST API, provided the user already had access to the r...