Filter
AND
-Infinity
0
Trending
GitHub EnterpriseCode Injection Vulnerability in GitHub Enterprise Server Allows Arbitrary Code Execution via Message Handling
7.1
First published (updated )
CodeQLCodeQL GitHub Action failed workflow writes GitHub PAT to debug artifacts
7.1
EPSS
0.04%
First published (updated )
GitHub EnterpriseImproper Verification of Cryptographic Signature in GitHub Enterprise Server Allows Signature Spoofing by Improper Validation
7.6
EPSS
0.04%
First published (updated )
GitHub EnterprisePrivilege Management vulnerability was identified in GitHub Enterprise Server that allowed GitHub Apps to grant themselves write access
8.7
EPSS
0.04%
First published (updated )
GitHub EnterprisePre-Receive Hook Path Collision Vulnerability in GitHub Enterprise Server Allowing Privilege Escalation
8.7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitHub ActionsArbitrary File Write via artifact extraction in actions/artifact
7.5
First published (updated )
GitHub EnterpriseDenial of Service vulnerability was identified in GitHub Enterprise Server that allowed resource exhaustion
7.7
EPSS
0.04%
First published (updated )
GitHub EnterpriseImproper Privilege Management was identified in GitHub Enterprise Server that allowed privilege escalation in the Management Console
8
EPSS
0.04%
First published (updated )
GitHub EnterpriseCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Management Console
8
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitHub EnterpriseRemote Code Execution in GitHub Enterprise Server Allowed Administrators to gain SSH access to the appliance
8
First published (updated )
GitHub EnterpriseImproper Authorization in GitHub Enterprise Server allowed unauthorized workflow execution
7.1
First published (updated )
GitHub EnterpriseCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console
8
First published (updated )
GitHub EnterprisePrivilege Escalation by Code Injection in the Management Console in GitHub Enterprise Server
8.8
EPSS
0.06%
First published (updated )
GitHub EnterpriseImproper Authentication in GitHub Enterprise Server leading to Authentication Bypass for Public Repository Data
7.5
EPSS
0.06%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitHub EnterpriseInsufficient Entropy in GitHub Enterprise Server Management Console Invitation Token
8.3
First published (updated )
GitHub EnterpriseRace Condition allows Administrative Access on Organization Repositories
7
First published (updated )
GitHub EnterpriseSensitive Information in Log File in GitHub Enterprise Server
7.2
EPSS
0.06%
First published (updated )
GitHub EnterpriseSensitive Information in Log File in GitHub Enterprise Server
8.1
EPSS
0.09%
First published (updated )
GitHub EnterpriseImproper Privilege Management in GitHub Enterprise Server management console leads to privilege escalation
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitHub EnterpriseIncorrect comparison vulnerability in GitHub Enterprise Server leading to commit smuggling
7.1
First published (updated )
cmark-gfmQuadratic complexity bugs may lead to a denial of service
7.5
First published (updated )
GitHub Pull Requests and IssuesVisual Studio Code GitHub Pull Requests and Issues Extension Remote Code Execution Vulnerability
7.8
First published (updated )
GitHub EnterpriseImproper authentication vulnerability in GitHub Enterprise Server leading to modification of secret gists
7.7
First published (updated )
cmark-gfmQuadratic complexity may lead to a denial of service in cmark-gfm
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
cmark-gfmQuadratic complexity may lead to a denial of service in cmark-gfm
7.5
First published (updated )
GitHub EnterprisePath traversal in GitHub Enterprise Server leading to remote code execution
8.8
First published (updated )
GitHub EnterpriseCode injection in GitHub Enterprise Server leading to arbitrary environment variables in GitHub Actions
8.8
First published (updated )
cmark-gfmcmark-gfm Quadratic complexity bug in handle_close_bracket may lead to a denial of service
7.5
First published (updated )
cmark-gfmInefficient Quadratic complexity bug in handle_pointy_brace may lead to a denial of service
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.