{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-23761", "assignerOrgId": "82327ea3-741d-41e4-88f8-2cf9e791e760", "state": "PUBLISHED", "assignerShortName": "GitHub_P", "dateReserved": "2023-01-17T20:40:37.553Z", "datePublished": "2023-04-07T18:41:47.038Z", "dateUpdated": "2025-02-07T20:14:26.121Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "product": "Enterprise Server", "vendor": "GitHub", "versions": [{"changes": [{"at": "3.4.18", "status": "unaffected"}], "lessThanOrEqual": "3.4.17", "status": "affected", "version": "3.4.0", "versionType": "semver"}, {"changes": [{"at": "3.5.15", "status": "unaffected"}], "lessThanOrEqual": "3.5.14", "status": "affected", "version": "3.5.0", "versionType": "semver"}, {"changes": [{"at": "3.6.11", "status": "unaffected"}], "lessThanOrEqual": "3.6.10", "status": "affected", "version": "3.6.0", "versionType": "semver"}, {"changes": [{"at": "3.7.8", "status": "unaffected"}], "lessThanOrEqual": "3.7.7", "status": "affected", "version": "3.7.0", "versionType": "semver"}, {"changes": [{"at": "3.8.1", "status": "unaffected"}], "lessThan": "3.8.1", "status": "affected", "version": "3.8.0", "versionType": "semver"}, {"status": "unaffected", "version": "3.9.0"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An improper authentication vulnerability was identified in GitHub Enterprise Server that allowed an unauthorized actor to modify other users' secret gists by authenticating through an SSH certificate authority. To do so, a user had to know the secret gist<span style=\"background-color: rgb(255, 255, 255);\">'</span>s URL. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.9 and was fixed in versions 3.4.18, 3.5.15, 3.6.11, 3.7.8, and 3.8.1. This vulnerability was reported via the GitHub Bug Bounty program."}], "value": "An improper authentication vulnerability was identified in GitHub Enterprise Server that allowed an unauthorized actor to modify other users' secret gists by authenticating through an SSH certificate authority. To do so, a user had to know the secret gist's URL. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.9 and was fixed in versions 3.4.18, 3.5.15, 3.6.11, 3.7.8, and 3.8.1. This vulnerability was reported via the GitHub Bug Bounty program."}], "impacts": [{"capecId": "CAPEC-114", "descriptions": [{"lang": "en", "value": "CAPEC-114 Authentication Abuse"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-287", "description": "CWE-287 Improper Authentication", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "82327ea3-741d-41e4-88f8-2cf9e791e760", "shortName": "GitHub_P", "dateUpdated": "2023-04-18T15:00:56.300Z"}, "references": [{"url": "https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.1"}, {"url": "https://docs.github.com/en/enterprise-server@3.7/admin/release-notes#3.7.8"}, {"url": "https://docs.github.com/en/enterprise-server@3.6/admin/release-notes#3.6.11"}, {"url": "https://docs.github.com/en/enterprise-server@3.5/admin/release-notes#3.5.15"}, {"url": "https://docs.github.com/en/enterprise-server@3.4/admin/release-notes#3.4.18"}], "source": {"discovery": "UNKNOWN"}, "title": "Improper authentication vulnerability in GitHub Enterprise Server leading to modification of secret gists", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T10:42:26.151Z"}, "title": "CVE Program Container", "references": [{"url": "https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.1", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.7/admin/release-notes#3.7.8", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.6/admin/release-notes#3.6.11", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.5/admin/release-notes#3.5.15", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.4/admin/release-notes#3.4.18", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-02-07T20:14:19.322772Z", "id": "CVE-2023-23761", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-02-07T20:14:26.121Z"}}]}}

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-23761", "assignerOrgId": "82327ea3-741d-41e4-88f8-2cf9e791e760", "state": "PUBLISHED", "assignerShortName": "GitHub_P", "dateReserved": "2023-01-17T20:40:37.553Z", "datePublished": "2023-04-07T18:41:47.038Z", "dateUpdated": "2025-02-07T20:14:26.121Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "product": "Enterprise Server", "vendor": "GitHub", "versions": [{"changes": [{"at": "3.4.18", "status": "unaffected"}], "lessThanOrEqual": "3.4.17", "status": "affected", "version": "3.4.0", "versionType": "semver"}, {"changes": [{"at": "3.5.15", "status": "unaffected"}], "lessThanOrEqual": "3.5.14", "status": "affected", "version": "3.5.0", "versionType": "semver"}, {"changes": [{"at": "3.6.11", "status": "unaffected"}], "lessThanOrEqual": "3.6.10", "status": "affected", "version": "3.6.0", "versionType": "semver"}, {"changes": [{"at": "3.7.8", "status": "unaffected"}], "lessThanOrEqual": "3.7.7", "status": "affected", "version": "3.7.0", "versionType": "semver"}, {"changes": [{"at": "3.8.1", "status": "unaffected"}], "lessThan": "3.8.1", "status": "affected", "version": "3.8.0", "versionType": "semver"}, {"status": "unaffected", "version": "3.9.0"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An improper authentication vulnerability was identified in GitHub Enterprise Server that allowed an unauthorized actor to modify other users' secret gists by authenticating through an SSH certificate authority. To do so, a user had to know the secret gist<span style=\"background-color: rgb(255, 255, 255);\">'</span>s URL. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.9 and was fixed in versions 3.4.18, 3.5.15, 3.6.11, 3.7.8, and 3.8.1. This vulnerability was reported via the GitHub Bug Bounty program."}], "value": "An improper authentication vulnerability was identified in GitHub Enterprise Server that allowed an unauthorized actor to modify other users' secret gists by authenticating through an SSH certificate authority. To do so, a user had to know the secret gist's URL. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.9 and was fixed in versions 3.4.18, 3.5.15, 3.6.11, 3.7.8, and 3.8.1. This vulnerability was reported via the GitHub Bug Bounty program."}], "impacts": [{"capecId": "CAPEC-114", "descriptions": [{"lang": "en", "value": "CAPEC-114 Authentication Abuse"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-287", "description": "CWE-287 Improper Authentication", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "82327ea3-741d-41e4-88f8-2cf9e791e760", "shortName": "GitHub_P", "dateUpdated": "2023-04-18T15:00:56.300Z"}, "references": [{"url": "https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.1"}, {"url": "https://docs.github.com/en/enterprise-server@3.7/admin/release-notes#3.7.8"}, {"url": "https://docs.github.com/en/enterprise-server@3.6/admin/release-notes#3.6.11"}, {"url": "https://docs.github.com/en/enterprise-server@3.5/admin/release-notes#3.5.15"}, {"url": "https://docs.github.com/en/enterprise-server@3.4/admin/release-notes#3.4.18"}], "source": {"discovery": "UNKNOWN"}, "title": "Improper authentication vulnerability in GitHub Enterprise Server leading to modification of secret gists", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T10:42:26.151Z"}, "title": "CVE Program Container", "references": [{"url": "https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.1", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.7/admin/release-notes#3.7.8", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.6/admin/release-notes#3.6.11", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.5/admin/release-notes#3.5.15", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.4/admin/release-notes#3.4.18", "tags": ["x_transferred"]}]}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-23761", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-02-07T20:14:19.322772Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-02-07T20:14:15.113Z"}}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "D30FF55B-C5FA-431A-8E0C-7FCB872AD8DC", "versionEndExcluding": "3.4.18", "vulnerable": true}, {"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "A6A66A3A-E2CB-4B7B-BB28-FD81D8A81F9C", "versionEndExcluding": "3.5.15", "versionStartIncluding": "3.5.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "A4C79CD6-3EA8-470D-8E35-EF53450F063B", "versionEndExcluding": "3.6.11", "versionStartIncluding": "3.6.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "75E3B814-6517-4938-917D-7098FF49E301", "versionEndExcluding": "3.7.8", "versionStartIncluding": "3.7.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:github:enterprise_server:3.8.0:*:*:*:*:*:*:*", "matchCriteriaId": "952A51A6-A24C-4989-9941-FE62E21C505D", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "An improper authentication vulnerability was identified in GitHub Enterprise Server that allowed an unauthorized actor to modify other users' secret gists by authenticating through an SSH certificate authority. To do so, a user had to know the secret gist's URL. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.9 and was fixed in versions 3.4.18, 3.5.15, 3.6.11, 3.7.8, and 3.8.1. This vulnerability was reported via the GitHub Bug Bounty program."}], "id": "CVE-2023-23761", "lastModified": "2024-11-21T07:46:46.920", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 1.3, "impactScore": 5.8, "source": "product-cna@github.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 1.6, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-04-07T19:15:06.980", "references": [{"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.4/admin/release-notes#3.4.18"}, {"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.5/admin/release-notes#3.5.15"}, {"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.6/admin/release-notes#3.6.11"}, {"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.7/admin/release-notes#3.7.8"}, {"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.4/admin/release-notes#3.4.18"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.5/admin/release-notes#3.5.15"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.6/admin/release-notes#3.6.11"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.7/admin/release-notes#3.7.8"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.1"}], "sourceIdentifier": "product-cna@github.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-287"}], "source": "product-cna@github.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-287"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}