Vulnerabilidades en GitHub
139 resultadosCVE-2024-0200HIGHUnsafe Reflection in Github Enterprise Server leading to Command InjectionEPSS 71.7%CVE-2024-0507MEDIUMPrivilege Escalation by Code Injection in the Management Console in GitHub Enterprise ServerEPSS 65.8%CVE-2026-3854HIGHRemote code execution via git push option injection in GitHub Enterprise ServerEPSS 24.5%CVE-2024-9487CRITICALAn Improper Verification of Cryptographic Signature vulnerability was identified in GitHub Enterprise Server that allowed SAML SSO authentication to be bypassed when the encrypted assertions feature was enabledEPSS 22.4%CVE-2026-9312CRITICALServer-Side Request Forgery vulnerability in GitHub Enterprise Server allowed access to internal services via path traversal in upload endpointEPSS 6.6%CVE-2019-16765HIGHIf an attacker can get a user to open a specially prepared directory tree as a workspace in Visual Studio Code with the CodeQL extension actEPSS 4.7%CVE-2022-24724HIGHInteger overflow in table parsing extension leads to heap memory corruptionEPSS 4.2%CVE-2020-10518—Unsafe configuration options in GitHub Pages leading to remote code execution on GitHub Enterprise ServerEPSS 3.7%CVE-2020-10519—Unsafe configuration options in GitHub Pages leading to remote code execution on GitHub Enterprise ServerEPSS 3.0%CVE-2024-1374CRITICALCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement ConsoleEPSS 2.6%CVE-2024-4985CRITICALAn authentication bypass vulnerability was present in the GitHub Enterprise Server (GHES) when utilizing SAML single sign-on authentication EPSS 2.6%CVE-2021-22864—Unsafe configuration options in GitHub Pages leading to remote code execution on GitHub Enterprise ServerEPSS 2.5%CVE-2024-1355CRITICALCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement ConsoleEPSS 2.4%CVE-2024-1378CRITICALCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement ConsoleEPSS 2.3%CVE-2024-1372CRITICALCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement ConsoleEPSS 2.3%CVE-2024-1359CRITICALCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement ConsoleEPSS 2.3%CVE-2024-1369CRITICALCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement ConsoleEPSS 2.3%CVE-2021-41599—Improper control flow in GitHub Enterprise Server hosted Pages leads to remote code executionEPSS 2.1%CVE-2024-2443CRITICALImproper input validation vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Management ConsoleEPSS 2.1%CVE-2022-46256HIGHPath traversal in GitHub Enterprise Server leading to remote code execution in GitHub PagesEPSS 1.9%