GitHub Patches Critical Security Flaw in Enterprise Server Granting Admin Privileges
GitHub Patches Critical Security Flaw in Enterprise Server Granting Admin Privileges
22 August 2024
GitHub has released fixes to address a set of three security flaws impacting its Enterprise Server product, including one critical bug that could be abused to gain site administrator privileges.
The most severe of the shortcomings has been assigned the CVE identifier CVE-2024-6800, and carries a CVSS score of 9.5.
"On GitHub Enterprise Server instances that use SAML single sign-on (SSO)