VYPR
Unrated severityNVD Advisory· Published Dec 21, 2023· Updated Aug 2, 2024

Race Condition allows Administrative Access on Organization Repositories

CVE-2023-46649

Description

A race condition in GitHub Enterprise Server was identified that could allow an attacker administrator access. To exploit this, an organization needs to be converted from a user. This vulnerability affected all versions of GitHub Enterprise Server since 3.7 and was fixed in version 3.7.19, 3.8.12, 3.9.7, 3.10.4, and 3.11.1.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • GitHub/Enterprise Serverllm-fuzzy2 versions
    >=3.7, <3.7.19, <3.8.12, <3.9.7, <3.10.4, <3.11.1+ 1 more
    • (no CPE)range: >=3.7, <3.7.19, <3.8.12, <3.9.7, <3.10.4, <3.11.1
    • (no CPE)range: 3.7.0

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.