Improper input validation vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Management Console
CVE-2024-2443

9.1CRITICAL

Key Information:

Vendor: Github
Status: Github Enterprise Server
Vendor: CVE Published:; 20 March 2024

Summary

A command injection vulnerability exists in GitHub Enterprise Server, which could potentially allow an attacker with an editor role in the Management Console to obtain unauthorized admin SSH access to the server. This risk arises when configuring GeoJSON settings, requiring an attacker to have access to the GitHub Enterprise Server instance and to the Management Console with the editor role. This vulnerability impacts all versions of GitHub Enterprise Server prior to 3.13, and the issue has been addressed in versions 3.8.17, 3.9.12, 3.10.9, 3.11.7, and 3.12.1. It was reported through the GitHub Bug Bounty program.

Affected Version(s)

GitHub Enterprise Server 3.8.0

GitHub Enterprise Server 3.8.0 < 3.8.17

GitHub Enterprise Server 3.9.0 < 3.9.12

References

https://docs.github.com/en/[email protected]/admin/re...

https://docs.github.com/en/[email protected]/admin/r...

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Mar 20, 2024

Credit

R31n