Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2024-4985

Published: 20/05/2024 Updated: 21/05/2024

Vulnerability Summary

An authentication bypass vulnerability was present in the GitHub Enterprise Server (GHES) when utilizing SAML single sign-on authentication with the optional encrypted assertions feature. This vulnerability allowed an malicious user to forge a SAML response to provision and/or gain access to a user with site administrator privileges. Exploitation of this vulnerability would allow unauthorized access to the instance without requiring prior authentication. This vulnerability affected all versions of GitHub Enterprise Server before 3.13.0 and was fixed in versions 3.9.15, 3.10.12, 3.11.10 and 3.12.4. This vulnerability was reported via the GitHub Bug Bounty program.

Vulnerability Trend

Github Repositories

https://github.com/absholi7ly/Bypass-authentication-GitHub-Enterprise-Server

The authentication bypass vulnerability in GitHub Enterprise Server (GHES) allows an unauthorized attacker to access an instance of GHES without requiring pre-authentication. The vulnerability affects all GHES versions prior to 3.13.0.

Bypass-authentication-GitHub-Enterprise-Server CVE-2024-4985 The authentication bypass vulnerability in GitHub Enterprise Server (GHES) allows an unauthorized attacker to access an instance of GHES without requiring pre-authentication The vulnerability affects all GHES versions prior to 3130 Technical vulnerability details: The vulnerability exploits a vulnerability in the

Recent Articles

GitHub Enterprise Server patches 10-outta-10 critical hole
The Register

Topics Security Off-Prem On-Prem Software Offbeat Special Features Vendor Voice Vendor Voice Resources On the bright side, someone made up to $30,000+ for finding it

GitHub has patched its Enterprise Server software to fix a security flaw that scored a 10 out of 10 CVSS severity score. The vulnerability affects instances of GitHub Enterprise Server, and gives full admin access to anyone exploiting the issue in any version of the code prior to version p3.13.0 of the code base. "On instances that use SAML single sign-on (SSO) authentication with the optional encrypted assertions feature, an attacker could forge a SAML response to provision and/or gain access t...

Read more...

References

https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.15https://docs.github.com/en/enterprise-server@3.10/admin/release-notes#3.10.12https://docs.github.com/en/enterprise-server@3.11/admin/release-notes#3.11.10https://docs.github.com/en/enterprise-server@3.12/admin/release-notes#3.12.4https://nvd.nist.govhttps://github.com/absholi7ly/Bypass-authentication-GitHub-Enterprise-Serverhttps://www.theregister.co.uk/2024/05/22/github_enterprise_server_patch/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalationCVE-2024-20696CVE-2024-29829CVE-2024-33999CVE-2024-35646physicalCVE-2024-24919CVE-2024-31030local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook