- Description
- An authentication bypass vulnerability was present in the GitHub Enterprise Server (GHES) when utilizing SAML single sign-on authentication with the optional encrypted assertions feature. This vulnerability allowed an attacker to forge a SAML response to provision and/or gain access to a user with site administrator privileges. Exploitation of this vulnerability would allow unauthorized access to the instance without requiring prior authentication. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.13.0 and was fixed in versions 3.9.15, 3.10.12, 3.11.10 and 3.12.4. This vulnerability was reported via the GitHub Bug Bounty program.
- Source
- product-cna@github.com
- NVD status
- Awaiting Analysis
CVSS 4.0
- Type
- Secondary
- Base score
- 10
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:U/V:C/RE:M/U:Red
- Severity
- CRITICAL
- product-cna@github.com
- CWE-303
- Hype score
- Not currently trending
Threat Alert: repz ret: Abusing libxml2 quirks to bypass SAML authentication on GitHub Enterpr CVE-2024-4985 CVE-2025-23369 Severity: 🟡 Medium Maturity: 🧨 Trending Learn more: https://t.co/XMF61zq1xZ #CyberSecurity #ThreatIntel #InfoSec
@fletch_ai
11 Feb 2025
37 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
GitHub Enterprise SAML Authentication Bypass (CVE-2024-4985 / CVE-2024-9487) https://t.co/8sONtwwtB8
@Dinosn
12 Nov 2024
2242 Impressions
6 Retweets
25 Likes
9 Bookmarks
0 Replies
0 Quotes
Check out our latest blog post! We dive into GitHub Enterprise’s SAML implementation and explore an authentication bypass in encrypted assertion mode. CVE-2024-4985 / CVE-2024-9487: GitHub Enterprise SAML Authentication Bypass. https://t.co/mFOE6GGkhO
@httpvoid0x2f
12 Nov 2024
9938 Impressions
46 Retweets
153 Likes
43 Bookmarks
0 Replies
1 Quote