26 matches found
CVE-2025-23369
CVE-2025-23369 affects GitHub Enterprise Server and centers on an improper verification of the cryptographic signature that can enable signature spoofing for unauthorized internal users. Public details indicate that versions before 3.12.14, 3.13.10, 3.14.7, 3.15.2, and 3.16.0 are impacted. Some c...
CVE-2022-23732
The CVE-2022-23732 entry concerns a path traversal vulnerability in the GitHub Enterprise Server management console that bypasses CSRF protections and could lead to privilege escalation. Affected software: GitHub Enterprise Server management console (all versions prior to 3.5). Root cause: path t...
CVE-2024-1354
CVE-2024-1354 describes a command-injection vulnerability in GitHub Enterprise Server where an attacker with editor privileges in the Management Console could escalate to admin SSH access via the syslog-ng configuration. The issue requires access to the GitHub Enterprise Server instance and Manag...
CVE-2021-41599
CVE-2021-41599 is a remote code execution vulnerability in GitHub Enterprise Server that can be exploited when building a GitHub Pages site. Attacker needs permission to create and build a GitHub Pages site on the instance. Affected all versions prior to 3.3; fixed in 3.0.21, 3.1.13, and 3.2.5. C...
CVE-2021-22866
The CVE describes a UI misrepresentation in GitHub Enterprise Server’s GitHub App authorization flow. A user could grant more permissions than shown if the App had additional user-level permissions added after initial approval, by revisiting the authorization flow. Affected products/versions: Git...
CVE-2026-3854
CVE-2026-3854 describes an RCE vulnerability in GitHub Enterprise Server arising during git push option handling. An attacker with push access could abuse unsanitized user-supplied push option values that are incorporated into internal service headers; because the header format uses a delimiter t...
CVE-2021-22864
GitHub Enterprise Server CVE-2021-22864 is a remote code execution flaw caused by insecure, user-controlled configuration options for GitHub Pages that could override environment variables. Affected: all GitHub Enterprise Server versions prior to 3.0.3. Impact: attacker with permission to create/...
CVE-2022-23734
CVE-2022-23734 describes a deserialization of untrusted data vulnerability in GitHub Enterprise Server (SVNBridge) that could enable remote code execution via an SSRF-assisted data deserialization path. Affected versions are all pre-3.6; fixed in 3.5.3, 3.4.6, 3.3.11, and 3.2.16. The vulnerabilit...
CVE-2022-46256
CVE-2022-46256 — GitHub Enterprise Server : A path traversal vulnerability allows remote code execution when building a GitHub Pages site. An attacker must have permission to create and build a Pages site on the instance. The issue affects GitHub Enterprise Server and is fixed in versions 3.3.17,...
CVE-2024-2469
CVE-2024-2469 affects GitHub Enterprise Server. An attacker with an Administrator role could achieve remote code execution that grants SSH root access. Affected versions include 3.8.0 and later; fixes were released in 3.8.17, 3.9.12, 3.10.9, 3.11.7 and 3.12.1. Documented impact is SSH root access...
CVE-2022-23740
GitHub Enterprise Server 3.7.0 is vulnerable to remote code execution due to improper neutralization of argument delimiters in a command. An attacker would need permission to create and build GitHub Pages with GitHub Actions. The issue affects only 3.7.0 and is fixed in 3.7.1; recovery requires u...
CVE-2024-3684
CVE-2024-3684 describes a server-side request forgery in GitHub Enterprise Server that, when an attacker has an editor role in the Management Console, could grant admin access to the appliance during configuration of Artifacts & Logs and Migrations Storage. The vulnerability required access to th...
CVE-2024-8810
Summary: CVE-2024-8810 affects GitHub Enterprise Server. A GitHub App installed in organizations could upgrade permissions from read to write without organization admin approval. Exploitation requires an account with administrator access to install a malicious GitHub App. Root cause / impact: Pri...
CVE-2025-3246
CVE-2025-3246 targets GitHub Enterprise Server, specifically version 3.16.1, via an improper neutralization of input that enables cross-site scripting in GitHub Markdown using $$..$$ math blocks. The issue requires access to the target instance and privileged user interaction with the malicious e...
CVE-2024-3646
CVE-2024-3646 : A command injection vulnerability was identified in GitHub Enterprise Server that could let an attacker with an editor role in the Management Console obtain admin SSH access to the instance during chat integration configuration. Exploitation required access to the GitHub Enterpris...
CVE-2023-22381
CVE-2023-22381 is a code injection vulnerability in GitHub Enterprise Server that allows setting arbitrary environment variables via a single env var value in GitHub Actions when running on Windows. The root cause is the insecure handling of environment variables in the Actions workflow context, ...
CVE-2021-41598
GitHub Enterprise Server vulnerability CVE-2021-41598 is a UI misrepresentation flaw in the GitHub App authorization flow. It can cause more permissions to be granted than the user sees during approval, specifically if the user later updates the repositories an app is installed on after additiona...
CVE-2023-23760
Summary: CVE-2023-23760 is a path traversal vulnerability in GitHub Enterprise Server that leads to remote code execution when building a GitHub Pages site. The attacker must have permission to create and build a GitHub Pages site on the target instance. Affected scope: GitHub Enterprise Server v...
CVE-2024-0507
GitHub Enterprise Server CVE-2024-0507 is a privilege-escalation via command injection in the Management Console. An attacker with a Management Console editor role can escalate privileges by exploiting input handling in the console. Affected versions include all GHES releases prior to fixes; reme...
CVE-2023-6746
CVE-2023-6746 affects GitHub Enterprise Server back-end logging: an insertion of sensitive information into log files could enable a man-in-the-middle-like scenario when combined with phishing, if an attacker can access log files, backups, or streamed logs. Affected versions include all releases ...
CVE-2023-46647
GitHub Enterprise Server (GHES) suffers from improper privilege management that allows users with authorized access to the management console (editor role) to escalate privileges by making requests to the bootstrapping endpoint. Affected versions: GHES 3.8.0 and above. Remediations: upgrade to fi...
CVE-2023-46648
The CVE-2023-46648 entry concerns an insufficient entropy vulnerability in GitHub Enterprise Server (GHES) invitation tokens for the Management Console. The root cause is the entropy insufficiency of the invitation token mechanism, enabling brute-force attempts to identify pending user invitation...
CVE-2026-4296
CVE-2026-4296 concerns an incorrect regular expression vulnerability in GitHub Enterprise Server that bypasses the OAuth redirect URI validation. An attacker who knows a first-party OAuth app’s registered callback URL could craft a malicious authorization link that, when clicked by a victim, redi...
CVE-2026-7541
CVE-2026-7541 is a denial-of-service vulnerability in GitHub Enterprise Server. An unauthenticated attacker could trigger service disruption by sending crafted requests with deeply nested JSON payloads to an unauthenticated API endpoint. The endpoint parsed user-controlled JSON bodies without siz...
CVE-2025-14046
CVE-2025-14046 affects GitHub Enterprise Server; improper input neutralization allows user-supplied HTML to inject DOM elements with conflicting IDs, shadowing server-initialized data islands and causing unintended server-side POST requests or other unauthorized backend interactions. Exploitation...
CVE-2025-13744
CVE-2025-13744 affects GitHub Enterprise Server. The issue is an Improper Neutralization of Input During Web Page Generation in the Filter (search) component, allowing attacker-controlled HTML to be rendered across GitHub and potentially exfiltrate sensitive information. An attacker must have per...