CVE-2024-9487

high-risk

Published 2024-10-10

An improper verification of cryptographic signature vulnerability was identified in GitHub Enterprise Server that allowed SAML SSO authentication to be bypassed resulting in unauthorized provisioning of users and access to the instance. Exploitation required the encrypted assertions feature to be enabled, and the attacker would require direct network access as well as a signed SAML response or metadata document. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.15 and was fixed in versions 3.11.16, 3.12.10, 3.13.5, and 3.14.2. This vulnerability was reported via the GitHub Bug Bounty program.

Do I need to act?

60.3% chance of exploitation in next 30 days

EPSS score — higher than 40% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.1/10 Critical

NETWORK / LOW complexity

Affected Products (1)

Enterprise Server

Affected Vendors

Github

References (4)

Release Notes https://docs.github.com/en/enterprise-server@3.11/admin/release-notes#3.11.16

Release Notes https://docs.github.com/en/enterprise-server@3.12/admin/release-notes#3.12.10

Release Notes https://docs.github.com/en/enterprise-server@3.13/admin/release-notes#3.13.5

Release Notes https://docs.github.com/en/enterprise-server@3.14/admin/release-notes#3.14.2

/ 100

high-risk

Severity 31/34 · Critical

Exploitability 19/34 · Moderate

Exposure 5/34 · Minimal