Security News > 2024 > August > GitHub Patches Critical Security Flaw in Enterprise Server Granting Admin Privileges

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2024-08-20 CVE-2024-6800 Improper Verification of Cryptographic Signature vulnerability in Github Enterprise Server
An XML signature wrapping vulnerability was present in GitHub Enterprise Server (GHES) when using SAML authentication with specific identity providers utilizing publicly exposed signed federation metadata XML.
network
low complexity
github CWE-347
critical
9.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Github 12 3 42 30 15 90