Github Enterprise Server Vulnerabilities

Cross-Site Scripting Vulnerability in GitHub Enterprise Server

CVE-2025-3246

GithubGithub Enterprise Server8.6HIGH

Remote Code Execution Vulnerability in GitHub Enterprise Server

CVE-2025-3509

GithubEnterprise Server7.1HIGH

Missing Authorization Exposure in GitHub Enterprise Server

CVE-2025-3124

GithubEnterprise Server5.3MEDIUM

Code Injection Vulnerability in GitHub Enterprise Server

CVE-2024-10001

GithubEnterprise Server7.1HIGH

Cryptographic Signature Spoofing Vulnerability in GitHub Enterprise Server

CVE-2025-23369

GithubEnterprise Server📈👾🟡7.6HIGH

Privilege Management vulnerability was identified in GitHub Enterprise Server that allowed GitHub Apps to grant themselves write access

CVE-2024-8810

GithubEnterprise Server

Internal Access to Sensitive Data via Personal Access Tokens

CVE-2024-10824

GithubEnterprise Server

GitHub Enterprise Server Path Collision Vulnerability

CVE-2024-10007

GithubEnterprise Server

GitHub Enterprise Server Vulnerability: Information Disclosure through Phishing

CVE-2024-9539

GithubGithub Enterprise Server4.3MEDIUM

Unauthorized Provisioning of Users and Access via SAML SSO Authentication Vulnerability

CVE-2024-9487

GithubEnterprise Server📈EPSS 36%9.1CRITICAL

Nested Tag Vulnerability Affects All Versions of GitHub Enterprise Server

CVE-2024-8263

GitHubEnterprise Server2.7LOW

XSS Vulnerability in GitHub Enterprise Server Requires Immediate Action

CVE-2024-8770

GitHubEnterprise Server6.1MEDIUM

Incorrect Authorization allows read access to issues in GitHub Enterprise Server

CVE-2024-6337

GithubGithub Enterprise Server6.5MEDIUM

GitHub Enterprise Server XML Signature Wrapping Vulnerability

CVE-2024-6800

GithubGithub Enterprise Server📰9.8CRITICAL

Incorrect Authorization Vulnerability in GitHub Enterprise Server

CVE-2024-7711

GithubEnterprise Server4.3MEDIUM

Improper Privilege Management in GitHub Enterprise Server

CVE-2024-5566

GithubEnterprise Server6.5MEDIUM

Denial of Service Vulnerability in GitHub Enterprise Server

CVE-2024-5795

GithubEnterprise Server6.5MEDIUM

Cross Site Request Forgery was identified in GitHub Enterprise Server that allowed write in a user owned repository

CVE-2024-5815

GithubGithub Enterprise Server6.5MEDIUM

Improper authorization allows persistent access in GitHub Enterprise Server

CVE-2024-5816

GithubGithub Enterprise Server5.3MEDIUM

Improper authorization allows read access to issue content in GitHub Enterprise Server

CVE-2024-5817

GithubGithub Enterprise Server6.5MEDIUM

Security misconfiguration was identified in GitHub Enterprise Server that allowed sensitive data exposure

CVE-2024-6336

GithubGithub Enterprise Server5.3MEDIUM

Sensitive Information Exposure in GitHub Enterprise Server

CVE-2024-6395

GithubEnterprise Server5.3MEDIUM

Server-Side Request Forgery Vulnerability in GitHub Enterprise Server

CVE-2024-5746

GithubGithub Enterprise Server7.6HIGH

Race Condition in GitHub Enterprise Server Allows Existing Admin to Maintain Permissions on Detached Repository

CVE-2024-2440

GithubEnterprise Server5.5MEDIUM

Command injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Management Console

CVE-2024-3646

GithubEnterprise Server8HIGH

Github Enterprise Server Vulnerabilities

Vulnerability Published:

Sort By:

17 April 2025

Cross-Site Scripting Vulnerability in GitHub Enterprise Server

Remote Code Execution Vulnerability in GitHub Enterprise Server

Missing Authorization Exposure in GitHub Enterprise Server

29 January 2025

Code Injection Vulnerability in GitHub Enterprise Server

21 January 2025

Cryptographic Signature Spoofing Vulnerability in GitHub Enterprise Server

7 November 2024

Privilege Management vulnerability was identified in GitHub Enterprise Server that allowed GitHub Apps to grant themselves write access

Internal Access to Sensitive Data via Personal Access Tokens

GitHub Enterprise Server Path Collision Vulnerability

11 October 2024

GitHub Enterprise Server Vulnerability: Information Disclosure through Phishing

10 October 2024

Unauthorized Provisioning of Users and Access via SAML SSO Authentication Vulnerability

23 September 2024

Nested Tag Vulnerability Affects All Versions of GitHub Enterprise Server

XSS Vulnerability in GitHub Enterprise Server Requires Immediate Action

20 August 2024

Incorrect Authorization allows read access to issues in GitHub Enterprise Server

GitHub Enterprise Server XML Signature Wrapping Vulnerability

Incorrect Authorization Vulnerability in GitHub Enterprise Server

16 July 2024

Improper Privilege Management in GitHub Enterprise Server

Denial of Service Vulnerability in GitHub Enterprise Server

Cross Site Request Forgery was identified in GitHub Enterprise Server that allowed write in a user owned repository

Improper authorization allows persistent access in GitHub Enterprise Server

Improper authorization allows read access to issue content in GitHub Enterprise Server

Security misconfiguration was identified in GitHub Enterprise Server that allowed sensitive data exposure

Sensitive Information Exposure in GitHub Enterprise Server

20 June 2024

Server-Side Request Forgery Vulnerability in GitHub Enterprise Server

19 April 2024

Race Condition in GitHub Enterprise Server Allows Existing Admin to Maintain Permissions on Detached Repository

Command injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Management Console