CVE-2024-6800

Name of the Vulnerable Software and Affected Versions GitHub Enterprise Server versions prior to 3.14 GitHub Enterprise Server versions 3.13.3, 3.12.8, 3.11.14, and 3.10.16 are not affected, all versions prior to these are vulnerable.

Description The issue is related to an XML signature wrapping vulnerability in GitHub Enterprise Server when using SAML authentication with specific identity providers. This vulnerability allows an attacker with direct network access to GitHub Enterprise Server to forge a SAML response, effectively granting themselves site administrator privileges. The vulnerability can be exploited to gain unauthorized access to the instance without requiring prior authentication.

Recommendations For GitHub Enterprise Server versions prior to 3.13.3, update to version 3.13.3 or later. For GitHub Enterprise Server versions prior to 3.12.8, update to version 3.12.8 or later. For GitHub Enterprise Server versions prior to 3.11.14, update to version 3.11.14 or later. For GitHub Enterprise Server versions prior to 3.10.16, update to version 3.10.16 or later. As a temporary workaround, consider restricting access to SAML authentication until a patch is applied.