Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. Critical Vulnerability in GitHub Enterprise Server
Alerts

Critical Vulnerability in GitHub Enterprise Server

24 May 2024

GitHub has released security updates to address a critical vulnerability (CVE-2024-4985) affecting GitHub Enterprise Server (GHES). The vulnerability has a maximum Common Vulnerability Scoring System (CVSSv4) score of 10 out of 10.

Successful exploitation of the vulnerability could allow an unauthenticated attacker to gain administrator privileges on vulnerable GHES instances that use Security Assertion Markup Language (SAML) single sign-on (SSO) authentication with encrypted assertions, through a forged SAML response. Gaining administrator privileges will allow the attacker unrestricted access to all of the instance's contents without requiring any authentication.

The vulnerability affects all versions of GHES prior to 3.13.0.

Users and administrators of affected versions of GHES are advised to update to the latest version immediately.

More information is available here:

https://nvd.nist.gov/vuln/detail/CVE-2024-4985

https://www.bleepingcomputer.com/news/security/github-warns-of-saml-auth-bypass-flaw-in-enterprise-server/