An attacker with an Administrator role in GitHub Enterprise Server could gain SSH root access via remote code execution. This vulnerability affected GitHub Enterprise Server version 3.8.0 and above and was fixed in version 3.8.17, 3.9.12, 3.10.9, 3.11.7 and 3.12.1. This vulnerability was reported via the GitHub Bug Bounty program.
Metrics
Affected Vendors & Products
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Thu, 04 Sep 2025 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | NVD-CWE-noinfo | |
CPEs | cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:* |
Thu, 10 Apr 2025 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Github
Github enterprise Server |
|
CPEs | cpe:2.3:a:github:enterprise_server:-:*:*:*:*:*:*:* | |
Vendors & Products |
Github
Github enterprise Server |
|
Metrics |
ssvc
|

Status: PUBLISHED
Assigner: GitHub_P
Published:
Updated: 2025-04-10T20:16:44.625Z
Reserved: 2024-03-14T18:55:41.254Z
Link: CVE-2024-2469

Updated: 2024-08-01T19:11:53.713Z

Status : Analyzed
Published: 2024-03-20T23:15:07.430
Modified: 2025-09-04T15:18:52.650
Link: CVE-2024-2469

No data.

No data.