CVE-2025-6981 | GitHub Enterprise Server up to 3.14.14/3.15.9/3.16.5/3.17.2 Contractors API Feature authorization

Inserito da Angelo Barbosa | Lug 15, 2025 | CVE

A vulnerability classified as problematic has been found in GitHub Enterprise Server up to 3.14.14/3.15.9/3.16.5/3.17.2. This affects an unknown part of the component Contractors API Feature. The manipulation leads to incorrect authorization.

This vulnerability is uniquely identified as CVE-2025-6981. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-6981 | GitHub Enterprise Server up to 3.14.14/3.15.9/3.16.5/3.17.2 Contractors API Feature authorization

Post correlati

CVE-2024-54557 | Apple macOS up to 13.6/14.6/15.1 Restrictions access control

CVE-2025-36506 | Ricoh Streamline NX V3 PC Client up to 3.242.0 file inclusion (ricoh-2025-000004)

CVE-2023-24334 | Tenda AC23 16.03.07.45_cn_TDC01 schedStartTime stack-based overflow

CVE-2023-52493 | Linux Kernel up to 5.10.209/5.15.148/6.1.75/6.6.14/6.7.2 mhi parse_xfer_event denial of service