GitHub warns of SAML auth bypass flaw in Enterprise Server By Bill Toulas May 21, 2024 11:01 AM 0 GitHub has fixed a maximum severity (CVSS v4 score: 10.0) authentication bypass vulnerability tracked as CVE-2024-4986, which impacts GitHub Enterprise Server (GHES) instances using SAML single sign-on (SSO) authentication. Exploiting the flaw would allow a threat actor to forge a SAML response and gain administrator privileges, providing unrestricted access to all of the instanc...
Vulmon