A race condition in GitHub Enterprise Server was identified that could allow an attacker administrator access. To exploit this, an organization needs to be converted from a user. This vulnerability affected all versions of GitHub Enterprise Server since 3.7 and was fixed in version 3.7.19, 3.8.12, 3.9.7, 3.10.4, and 3.11.1.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: GitHub_P
Published: 2023-12-21T20:45:43.763Z
Updated: 2023-12-21T20:45:43.763Z
Reserved: 2023-10-24T13:41:13.390Z
Link: CVE-2023-46649
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-12-21T21:15:09.573
Modified: 2023-12-29T15:34:14.727
Link: CVE-2023-46649
JSON object: View
Redhat Information
No data.
CWE