GitHub Patches Critical Flaw in Enterprise Server Allowing Unauthorized Instance Access

Discussion in 'News Aggregator' started by The Hacker News, 16 Oct 2024.

  1. GitHub has released security updates for Enterprise Server (GHES) to address multiple issues, including a critical bug that could allow unauthorized access to an instance. The vulnerability, tracked as CVE-2024-9487, carries a CVS score of 9.5 out of a maximum of 10.0 "An attacker could bypass SAML single sign-on (SSO) authentication with the optional encrypted assertions feature, allowing

    Continue reading...
     

Share This Page

Loading...