CVE-2023-23761

An improper authentication vulnerability was identified in GitHub Enterprise Server that allowed an unauthorized actor to modify other users' secret gists by authenticating through an SSH certificate authority. To do so, a user had to know the secret gist's URL. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.9 and was fixed in versions 3.4.18, 3.5.15, 3.6.11, 3.7.8, and 3.8.1. This vulnerability was reported via the GitHub Bug Bounty program.

Published: Apr 7, 2023
Updated: Apr 19, 2023
CVE: CVE-2023-23761
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N

CWEs:

CWE-287

OWASP TOP 10:

A2 - Broken Authentication

Affected Software
References

Software	From	Fixed in
github / enterprise_server	3.8.0	3.8.0.x
github / enterprise_server	3.7.0	3.7.8
github / enterprise_server	3.6.0	3.6.11
github / enterprise_server	3.5.0	3.5.15
github / enterprise_server	-	3.4.18

https://docs.github.com/en/[email protected]/admin/release-notes#3.4.18
https://docs.github.com/en/[email protected]/admin/release-notes#3.5.15
https://docs.github.com/en/[email protected]/admin/release-notes#3.6.11
https://docs.github.com/en/[email protected]/admin/release-notes#3.7.8
https://docs.github.com/en/[email protected]/admin/release-notes#3.8.1

Vulnerability Database

289,689

CVE-2023-23761