CVE-2023-23763 - OpenCVE

An authorization/sensitive information disclosure vulnerability was identified in GitHub Enterprise Server that allowed a fork to retain read access to an upstream repository after its visibility was changed to private. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.10.0 and was fixed in versions 3.9.4, 3.8.9, 3.7.16 and 3.6.18. This vulnerability was reported via the GitHub Bug Bounty program.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Github	Enterprise Server

Configuration 1 [-]

OR	cpe:2.3:a:github:enterprise_server::::::::
	cpe:2.3:a:github:enterprise_server::::::::
	cpe:2.3:a:github:enterprise_server::::::::
	cpe:2.3:a:github:enterprise_server::::::::

References

Link	Resource
https://docs.github.com/en/enterprise-server@3.6/admin/release-notes#3.6.18-security-fixes	Release Notes
https://docs.github.com/en/enterprise-server@3.7/admin/release-notes#3.7.16-security-fixes	Release Notes
https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.9-security-fixes	Release Notes
https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.4-security-fixes	Release Notes

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: GitHub_P

Published: 2023-09-01T14:23:42.930Z

Updated: 2023-09-01T14:54:47.228Z

Reserved: 2023-01-17T20:40:37.553Z

Link: CVE-2023-23763

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-09-01T15:15:07.620

Modified: 2023-09-07T19:53:27.870

Link: CVE-2023-23763

JSON object: View

Redhat Information

No data.

CWE

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"cveId": "CVE-2023-23763", "assignerOrgId": "82327ea3-741d-41e4-88f8-2cf9e791e760", "state": "PUBLISHED", "assignerShortName": "GitHub_P", "dateReserved": "2023-01-17T20:40:37.553Z", "datePublished": "2023-09-01T14:23:42.930Z", "dateUpdated": "2023-09-01T14:54:47.228Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Enterprise Server", "vendor": "GitHub", "versions": [{"lessThan": "3.6.18", "status": "affected", "version": "3.6.0", "versionType": "semver"}, {"lessThan": "3.7.16", "status": "affected", "version": "3.7.0", "versionType": "semver"}, {"lessThan": "3.8.9", "status": "affected", "version": "3.8.0", "versionType": "semver"}, {"lessThan": "3.9.4", "status": "affected", "version": "3.9.0", "versionType": "semver"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "inspector-ambitious"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An authorization/sensitive information disclosure vulnerability was identified in GitHub Enterprise Server that allowed a fork to <span style=\"background-color: rgba(232, 232, 232, 0.04);\">retain read access to an upstream repository after its visibility was changed to private</span>. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.10.0 and was fixed in versions 3.9.4, 3.8.9, 3.7.16 and 3.6.18. This vulnerability was reported via the GitHub Bug Bounty program.<br>"}], "value": "An authorization/sensitive information disclosure vulnerability was identified in GitHub Enterprise Server that allowed a fork to retain read access to an upstream repository after its visibility was changed to private. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.10.0 and was fixed in versions 3.9.4, 3.8.9, 3.7.16 and 3.6.18. This vulnerability was reported via the GitHub Bug Bounty program.\n"}], "impacts": [{"capecId": "CAPEC-116", "descriptions": [{"lang": "en", "value": "CAPEC-116 Excavation"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-200", "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "82327ea3-741d-41e4-88f8-2cf9e791e760", "shortName": "GitHub_P", "dateUpdated": "2023-09-01T14:54:47.228Z"}, "references": [{"url": "https://docs.github.com/en/enterprise-server@3.6/admin/release-notes#3.6.18-security-fixes"}, {"url": "https://docs.github.com/en/enterprise-server@3.7/admin/release-notes#3.7.16-security-fixes"}, {"url": "https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.9-security-fixes"}, {"url": "https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.4-security-fixes"}], "source": {"discovery": "EXTERNAL"}, "title": "Information disclosure in GitHub Enterprise Server leading to private repository leakage", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "B03C9B63-C322-4C77-B1D9-637A9C45AE65", "versionEndExcluding": "3.6.18", "versionStartIncluding": "3.6.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "12B15ADD-B347-4EBC-8AA8-945083E5BB85", "versionEndExcluding": "3.7.16", "versionStartIncluding": "3.7.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "56FDAC1D-5BF6-4067-AEB1-5EA35FA7871A", "versionEndExcluding": "3.8.9", "versionStartIncluding": "3.8.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "5B9AA495-49D5-4331-B57B-60FF995C0B09", "versionEndExcluding": "3.9.4", "versionStartIncluding": "3.9.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "An authorization/sensitive information disclosure vulnerability was identified in GitHub Enterprise Server that allowed a fork to retain read access to an upstream repository after its visibility was changed to private. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.10.0 and was fixed in versions 3.9.4, 3.8.9, 3.7.16 and 3.6.18. This vulnerability was reported via the GitHub Bug Bounty program.\n"}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad de autorizaci\u00f3n/divulgaci\u00f3n de informaci\u00f3n sensible en GitHub Enterprise Server que permit\u00eda a un fork conservar el acceso de lectura a un repositorio upstream despu\u00e9s de cambiar su visibilidad a privada. Esta vulnerabilidad afectaba a todas las versiones de GitHub Enterprise Server anteriores a la 3.10.0 y se solucion\u00f3 en las versiones 3.9.4, 3.8.9, 3.7.16 y 3.6.18. Esta vulnerabilidad fue reportada a trav\u00e9s del programa GitHub Bug Bounty. "}], "id": "CVE-2023-23763", "lastModified": "2023-09-07T19:53:27.870", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "product-cna@github.com", "type": "Secondary"}]}, "published": "2023-09-01T15:15:07.620", "references": [{"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.6/admin/release-notes#3.6.18-security-fixes"}, {"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.7/admin/release-notes#3.7.16-security-fixes"}, {"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.9-security-fixes"}, {"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.4-security-fixes"}], "sourceIdentifier": "product-cna@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-200"}], "source": "product-cna@github.com", "type": "Secondary"}]}