CVE-2024-9487 | GitHub Enterprise Server up to 3.11.15/3.12.9/3.13.4/3.14.1 SAML SSO signature verification

Posted by Angelo Barbosa | Oct 11, 2024 | CVE

A vulnerability, which was classified as problematic, was found in GitHub Enterprise Server up to 3.11.15/3.12.9/3.13.4/3.14.1. This affects an unknown part of the component SAML SSO. The manipulation leads to improper verification of cryptographic signature.

This vulnerability is uniquely identified as CVE-2024-9487. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-9487 | GitHub Enterprise Server up to 3.11.15/3.12.9/3.13.4/3.14.1 SAML SSO signature verification

Related Posts

CVE-2024-1179 | TP-Link Omada ER605 DHCPv6 Client Options stack-based overflow

CVE-2024-36078 | Zammad up to 6.3.0 on Ruby permission

CVE-2024-38651 | Veeam Service Provider Console up to 8.0.0.19552 File access control (kb4649)

CVE-2024-22563 | OpenvSwitch 2.17.8 /lib/util.c xmalloc__ memory leak