CVE-2024-9487

Name of the Vulnerable Software and Affected Versions GitHub Enterprise Server versions prior to 3.15 GitHub Enterprise Server version 3.11.16 GitHub Enterprise Server version 3.12.10 GitHub Enterprise Server version 3.13.5 GitHub Enterprise Server version 3.14.2

Description The vulnerability is related to an improper verification of cryptographic signatures in GitHub Enterprise Server, allowing SAML SSO authentication to be bypassed. This results in unauthorized provisioning of users and access to the instance. The exploitation requires the encrypted assertions feature to be enabled, and the attacker needs direct network access as well as a signed SAML response or metadata document.

Recommendations For GitHub Enterprise Server versions prior to 3.11.16, update to version 3.11.16 or later. For GitHub Enterprise Server versions prior to 3.12.10, update to version 3.12.10 or later. For GitHub Enterprise Server versions prior to 3.13.5, update to version 3.13.5 or later. For GitHub Enterprise Server versions prior to 3.14.2, update to version 3.14.2 or later. As a temporary workaround, consider disabling the encrypted assertions feature until a patch is available. Restrict access to the SAML SSO authentication module to minimize the risk of exploitation.