{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-6336", "assignerOrgId": "82327ea3-741d-41e4-88f8-2cf9e791e760", "state": "PUBLISHED", "assignerShortName": "GitHub_P", "dateReserved": "2024-06-25T20:18:21.890Z", "datePublished": "2024-07-16T21:27:07.393Z", "dateUpdated": "2024-08-01T21:33:05.420Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "product": "GitHub Enterprise Server", "vendor": "GitHub", "versions": [{"changes": [{"at": "3.10.14", "status": "unaffected"}], "lessThanOrEqual": "3.10.13", "status": "affected", "version": "3.10.0", "versionType": "semver"}, {"changes": [{"at": "3.11.12", "status": "unaffected"}], "lessThanOrEqual": "3.11.11", "status": "affected", "version": "3.11.0", "versionType": "semver"}, {"changes": [{"at": "3.12.6", "status": "unaffected"}], "lessThanOrEqual": "3.12.5", "status": "affected", "version": "3.12.0", "versionType": "semver"}, {"changes": [{"at": "3.13.1", "status": "unaffected"}], "lessThanOrEqual": "3.13.0", "status": "affected", "version": "3.13", "versionType": "semver"}, {"changes": [{"at": "3.9.17", "status": "unaffected"}], "lessThanOrEqual": "3.9.16", "status": "affected", "version": "3.9.0", "versionType": "semver"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Omar El Latif"}, {"lang": "en", "type": "finder", "value": "Giovanni Guido"}, {"lang": "en", "type": "finder", "value": "Antonio Francesco Sardella"}, {"lang": "en", "type": "finder", "value": "Andrea Valenza"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: transparent;\">A Security Misconfiguration vulnerability in GitHub Enterprise Server allowed sensitive information disclosure to unauthorized users in GitHub Enterprise Server by exploiting organization ruleset feature. This attack required an organization member to explicitly change the visibility of a dependent repository from private to public. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.14 and was fixed in versions 3.13.1, 3.12.6, 3.11.12, 3.10.14, and 3.9.17. This vulnerability was reported via the GitHub Bug Bounty program.</span><br>"}], "value": "A Security Misconfiguration vulnerability in GitHub Enterprise Server allowed sensitive information disclosure to unauthorized users in GitHub Enterprise Server by exploiting organization ruleset feature. This attack required an organization member to explicitly change the visibility of a dependent repository from private to public. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.14 and was fixed in versions 3.13.1, 3.12.6, 3.11.12, 3.10.14, and 3.9.17. This vulnerability was reported via the GitHub Bug Bounty program."}], "impacts": [{"capecId": "CAPEC-212", "descriptions": [{"lang": "en", "value": "CAPEC-212 Functionality Misuse"}]}], "metrics": [{"cvssV4_0": {"Automatable": "NO", "Recovery": "USER", "Safety": "NEGLIGIBLE", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "attackVector": "NETWORK", "baseScore": 6.9, "baseSeverity": "MEDIUM", "privilegesRequired": "NONE", "providerUrgency": "AMBER", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "HIGH", "subIntegrityImpact": "NONE", "userInteraction": "ACTIVE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/S:N/AU:N/R:U/U:Amber", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-200", "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "82327ea3-741d-41e4-88f8-2cf9e791e760", "shortName": "GitHub_P", "dateUpdated": "2024-07-16T21:27:07.393Z"}, "references": [{"url": "https://docs.github.com/en/enterprise-server@3.10/admin/release-notes#3.10.15"}, {"url": "https://docs.github.com/en/enterprise-server@3.11/admin/release-notes#3.11.12"}, {"url": "https://docs.github.com/en/enterprise-server@3.12/admin/release-notes#3.12.6"}, {"url": "https://docs.github.com/en/enterprise-server@3.13/admin/release-notes#3.13.1"}, {"url": "https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.17"}], "source": {"discovery": "UNKNOWN"}, "title": "Security misconfiguration was identified in GitHub Enterprise Server that allowed sensitive data exposure", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-07-17T15:38:56.968094Z", "id": "CVE-2024-6336", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-17T15:39:07.466Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T21:33:05.420Z"}, "title": "CVE Program Container", "references": [{"url": "https://docs.github.com/en/enterprise-server@3.10/admin/release-notes#3.10.15", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.11/admin/release-notes#3.11.12", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.12/admin/release-notes#3.12.6", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.13/admin/release-notes#3.13.1", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.17", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://docs.github.com/en/enterprise-server@3.10/admin/release-notes#3.10.15", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.11/admin/release-notes#3.11.12", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.12/admin/release-notes#3.12.6", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.13/admin/release-notes#3.13.1", "tags": ["x_transferred"]}, {"url": "https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.17", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T21:33:05.420Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-6336", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-07-17T15:38:56.968094Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-17T15:39:02.169Z"}}], "cna": {"title": "Security misconfiguration was identified in GitHub Enterprise Server that allowed sensitive data exposure", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "finder", "value": "Omar El Latif"}, {"lang": "en", "type": "finder", "value": "Giovanni Guido"}, {"lang": "en", "type": "finder", "value": "Antonio Francesco Sardella"}, {"lang": "en", "type": "finder", "value": "Andrea Valenza"}], "impacts": [{"capecId": "CAPEC-212", "descriptions": [{"lang": "en", "value": "CAPEC-212 Functionality Misuse"}]}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NEGLIGIBLE", "version": "4.0", "Recovery": "USER", "baseScore": 6.9, "Automatable": "NO", "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/S:N/AU:N/R:U/U:Amber", "providerUrgency": "AMBER", "userInteraction": "ACTIVE", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "GitHub", "product": "GitHub Enterprise Server", "versions": [{"status": "affected", "changes": [{"at": "3.10.14", "status": "unaffected"}], "version": "3.10.0", "versionType": "semver", "lessThanOrEqual": "3.10.13"}, {"status": "affected", "changes": [{"at": "3.11.12", "status": "unaffected"}], "version": "3.11.0", "versionType": "semver", "lessThanOrEqual": "3.11.11"}, {"status": "affected", "changes": [{"at": "3.12.6", "status": "unaffected"}], "version": "3.12.0", "versionType": "semver", "lessThanOrEqual": "3.12.5"}, {"status": "affected", "changes": [{"at": "3.13.1", "status": "unaffected"}], "version": "3.13", "versionType": "semver", "lessThanOrEqual": "3.13.0"}, {"status": "affected", "changes": [{"at": "3.9.17", "status": "unaffected"}], "version": "3.9.0", "versionType": "semver", "lessThanOrEqual": "3.9.16"}], "defaultStatus": "affected"}], "references": [{"url": "https://docs.github.com/en/enterprise-server@3.10/admin/release-notes#3.10.15"}, {"url": "https://docs.github.com/en/enterprise-server@3.11/admin/release-notes#3.11.12"}, {"url": "https://docs.github.com/en/enterprise-server@3.12/admin/release-notes#3.12.6"}, {"url": "https://docs.github.com/en/enterprise-server@3.13/admin/release-notes#3.13.1"}, {"url": "https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.17"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "A Security Misconfiguration vulnerability in GitHub Enterprise Server allowed sensitive information disclosure to unauthorized users in GitHub Enterprise Server by exploiting organization ruleset feature. This attack required an organization member to explicitly change the visibility of a dependent repository from private to public. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.14 and was fixed in versions 3.13.1, 3.12.6, 3.11.12, 3.10.14, and 3.9.17. This vulnerability was reported via the GitHub Bug Bounty program.", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: transparent;\">A Security Misconfiguration vulnerability in GitHub Enterprise Server allowed sensitive information disclosure to unauthorized users in GitHub Enterprise Server by exploiting organization ruleset feature. This attack required an organization member to explicitly change the visibility of a dependent repository from private to public. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.14 and was fixed in versions 3.13.1, 3.12.6, 3.11.12, 3.10.14, and 3.9.17. This vulnerability was reported via the GitHub Bug Bounty program.</span><br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-200", "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor"}]}], "providerMetadata": {"orgId": "82327ea3-741d-41e4-88f8-2cf9e791e760", "shortName": "GitHub_P", "dateUpdated": "2024-07-16T21:27:07.393Z"}}}, "cveMetadata": {"cveId": "CVE-2024-6336", "state": "PUBLISHED", "dateUpdated": "2024-08-01T21:33:05.420Z", "dateReserved": "2024-06-25T20:18:21.890Z", "assignerOrgId": "82327ea3-741d-41e4-88f8-2cf9e791e760", "datePublished": "2024-07-16T21:27:07.393Z", "assignerShortName": "GitHub_P"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "BAF7098F-C0C3-474E-8E01-E3252A3A4DB4", "versionEndExcluding": "3.9.17", "versionStartIncluding": "3.9.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "976E8532-E4BE-4779-9E09-05FCD57F5EB0", "versionEndExcluding": "3.10.14", "versionStartIncluding": "3.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "1A638319-C7A1-42F0-808E-84DF23F37734", "versionEndExcluding": "3.11.12", "versionStartIncluding": "3.11.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "EB39F351-9738-4228-B4C9-0A0E6A4CE97D", "versionEndExcluding": "3.12.6", "versionStartIncluding": "3.12.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:github:enterprise_server:3.13.0:*:*:*:*:*:*:*", "matchCriteriaId": "8D9D3E81-23E5-4BD9-BC0F-D87CF0ED21FF", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A Security Misconfiguration vulnerability in GitHub Enterprise Server allowed sensitive information disclosure to unauthorized users in GitHub Enterprise Server by exploiting organization ruleset feature. This attack required an organization member to explicitly change the visibility of a dependent repository from private to public. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.14 and was fixed in versions 3.13.1, 3.12.6, 3.11.12, 3.10.14, and 3.9.17. This vulnerability was reported via the GitHub Bug Bounty program."}, {"lang": "es", "value": "Una vulnerabilidad de configuraci\u00f3n incorrecta de seguridad en GitHub Enterprise Server permiti\u00f3 la divulgaci\u00f3n de informaci\u00f3n confidencial a usuarios no autorizados en GitHub Enterprise Server mediante la explotaci\u00f3n de la funci\u00f3n de conjunto de reglas de la organizaci\u00f3n. Este ataque requiri\u00f3 que un miembro de la organizaci\u00f3n cambiara expl\u00edcitamente la visibilidad de un repositorio dependiente de privado a p\u00fablico. Esta vulnerabilidad afect\u00f3 a todas las versiones de GitHub Enterprise Server anteriores a la 3.14 y se solucion\u00f3 en las versiones 3.13.1, 3.12.6, 3.11.12, 3.10.14 y 3.9.17. Esta vulnerabilidad se inform\u00f3 a trav\u00e9s del programa GitHub Bug Bounty."}], "id": "CVE-2024-6336", "lastModified": "2024-09-17T15:23:02.077", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"attackComplexity": "LOW", "attackRequirements": "PRESENT", "attackVector": "NETWORK", "automatable": "NO", "availabilityRequirements": "NOT_DEFINED", "baseScore": 6.9, "baseSeverity": "MEDIUM", "confidentialityRequirements": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirements": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubsequentSystemAvailability": "NOT_DEFINED", "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnerableSystemAvailability": "NOT_DEFINED", "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "AMBER", "recovery": "USER", "safety": "NEGLIGIBLE", "subsequentSystemAvailability": "NONE", "subsequentSystemConfidentiality": "HIGH", "subsequentSystemIntegrity": "NONE", "userInteraction": "ACTIVE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:X/RE:X/U:Amber", "version": "4.0", "vulnerabilityResponseEffort": "NOT_DEFINED", "vulnerableSystemAvailability": "NONE", "vulnerableSystemConfidentiality": "HIGH", "vulnerableSystemIntegrity": "NONE"}, "source": "product-cna@github.com", "type": "Secondary"}]}, "published": "2024-07-16T22:15:05.983", "references": [{"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.10/admin/release-notes#3.10.15"}, {"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.11/admin/release-notes#3.11.12"}, {"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.12/admin/release-notes#3.12.6"}, {"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.13/admin/release-notes#3.13.1"}, {"source": "product-cna@github.com", "tags": ["Release Notes"], "url": "https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.17"}], "sourceIdentifier": "product-cna@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-200"}], "source": "product-cna@github.com", "type": "Secondary"}]}

{}