CVE-2023-23763 - OpenCVE

An authorization/sensitive information disclosure vulnerability was identified in GitHub Enterprise Server that allowed a fork to retain read access to an upstream repository after its visibility was changed to private. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.10.0 and was fixed in versions 3.9.4, 3.8.9, 3.7.16 and 3.6.18. This vulnerability was reported via the GitHub Bug Bounty program.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Github	Enterprise Server

Configuration 1 [-]

OR	cpe:2.3:a:github:enterprise_server::::::::
	cpe:2.3:a:github:enterprise_server::::::::
	cpe:2.3:a:github:enterprise_server::::::::
	cpe:2.3:a:github:enterprise_server::::::::

No data.

References

Link	Providers
https://docs.github.com/en/enterprise-server@3.6/admin/release-notes#3.6.18-security-fixes
https://docs.github.com/en/enterprise-server@3.7/admin/release-notes#3.7.16-security-fixes
https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.9-security-fixes
https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.4-security-fixes

History

No history.

MITRE

Status: PUBLISHED

Assigner: GitHub_P

Published: 2023-09-01T14:23:42.930Z

Updated: 2024-08-02T10:42:25.864Z

Reserved: 2023-01-17T20:40:37.553Z

Link: CVE-2023-23763

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2023-09-01T15:15:07.620

Modified: 2023-09-07T19:53:27.870

Link: CVE-2023-23763

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-23763", "assignerOrgId": "82327ea3-741d-41e4-88f8-2cf9e791e760", "state": "PUBLISHED", "assignerShortName": "GitHub_P", "dateReserved": "2023-01-17T20:40:37.553Z", "datePublished": "2023-09-01T14:23:42.930Z", "dateUpdated": "2024-08-02T10:42:25.864Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Enterprise Server", "vendor": "GitHub", "versions": [{"lessThan": "3.6.18", "status": "affected", "version": "3.6.0", "versionType": "semver"}, {"lessThan": "3.7.16", "status": "affected", "version": "3.7.0", "versionType": "semver"}, {"lessThan": "3.8.9", "status": "affected", "version": "3.8.0", "versionType": "semver"}, {"lessThan": "3.9.4", "status": "affected", "version": "3.9.0", "versionType": "semver"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "inspector-ambitious"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An authorization/sensitive information disclosure vulnerability was identified in GitHub Enterprise Server that allowed a fork to <span style=\"background-color: rgba(232, 232, 232, 0.04);\">retain read access to an upstream repository after its visibility was changed to private</span>. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.10.0 and was fixed in versions 3.9.4, 3.8.9, 3.7.16 and 3.6.18. This vulnerability was reported via the GitHub Bug Bounty program.<br>"}], "value": "An authorization/sensitive information disclosure vulnerability was identified in GitHub Enterprise Server that allowed a fork to retain read access to an upstream repository after its visibility was changed to private. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.10.0 and was fixed in versions 3.9.4, 3.8.9, 3.7.16 and 3.6.18. This vulnerability was reported via the GitHub Bug Bounty program.\n"}], "impacts": [{"capecId": "CAPEC-116", "descriptions": [{"lang": "en", "value": "CAPEC-116 Excavation"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-200", "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "82327ea3-741d-41e4-88f8-2cf9e791e760", "shortName": "GitHub_P", "dateUpdated": "2023-09-01T14:54:47.228Z"}, "references": [{"url": "https://docs.github.com/en/enterprise-server@3.6/admin/release-notes#3.6.18-security-fixes"}, {"url": "https://docs.github.com/en/enterprise-server@3.7/admin/release-notes#3.7.16-security-fixes"}, {"url": "https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.9-security-fixes"}, {"url": "https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.4-security-fixes"}], "source": {"discovery": "EXTERNAL"}, "title": "Information disclosure in GitHub Enterprise Server leading to private repository leakage", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T10:42:25.864Z"}, "title": "CVE Program Container", "references": [{"url": "https://docs.github.com/en/enterprise-server@3.6/admin/release-notes#3.6.18-security-fixes", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.7/admin/release-notes#3.7.16-security-fixes", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.9-security-fixes", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.4-security-fixes", "tags": ["x_transferred"]}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "B03C9B63-C322-4C77-B1D9-637A9C45AE65", "versionEndExcluding": "3.6.18", "versionStartIncluding": "3.6.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "12B15ADD-B347-4EBC-8AA8-945083E5BB85", "versionEndExcluding": "3.7.16", "versionStartIncluding": "3.7.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "56FDAC1D-5BF6-4067-AEB1-5EA35FA7871A", "versionEndExcluding": "3.8.9", "versionStartIncluding": "3.8.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "5B9AA495-49D5-4331-B57B-60FF995C0B09", "versionEndExcluding": "3.9.4", "versionStartIncluding": "3.9.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An authorization/sensitive information disclosure vulnerability was identified in GitHub Enterprise Server that allowed a fork to retain read access to an upstream repository after its visibility was changed to private. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.10.0 and was fixed in versions 3.9.4, 3.8.9, 3.7.16 and 3.6.18. This vulnerability was reported via the GitHub Bug Bounty program.\n"}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad de autorizaci\u00f3n/divulgaci\u00f3n de informaci\u00f3n sensible en GitHub Enterprise Server que permit\u00eda a un fork conservar el acceso de lectura a un repositorio upstream despu\u00e9s de cambiar su visibilidad a privada. Esta vulnerabilidad afectaba a todas las versiones de GitHub Enterprise Server anteriores a la 3.10.0 y se solucion\u00f3 en las versiones 3.9.4, 3.8.9, 3.7.16 y 3.6.18. Esta vulnerabilidad fue reportada a trav\u00e9s del programa GitHub Bug Bounty. "}], "id": "CVE-2023-23763", "lastModified": "2023-09-07T19:53:27.870", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "product-cna@github.com", "type": "Secondary"}]}, "published": "2023-09-01T15:15:07.620", "references": [{"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.6/admin/release-notes#3.6.18-security-fixes"}, {"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.7/admin/release-notes#3.7.16-security-fixes"}, {"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.9-security-fixes"}, {"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.4-security-fixes"}], "sourceIdentifier": "product-cna@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-200"}], "source": "product-cna@github.com", "type": "Secondary"}]}