May 22, 2024 at 03:58PM
A critical security bug (CVE-2024-4985, CVSS 10) in GitHub Enterprise Server affects SAML SSO implementations with encrypted assertions. Attackers can create fake SAML responses to obtain admin privileges. Versions before 3.13.0 are vulnerable, but emergency fixes are available in versions 3.9.15, 3.10.12, 3.11.10, and 3.12.4.
Key takeaways from the meeting notes:
– There is a max-critical security vulnerability in GitHub’s Enterprise Server (CVE-2024-4985, CVSS 10).
– The vulnerability affects implementations using SAML SSO with optional encrypted assertions enabled.
– Attackers can bypass authentication and obtain administrative privileges by creating a fake SAML response.
– Versions of GitHub Enterprise Server prior to 3.13.0 are affected, and emergency fixes have been issued in versions 3.9.15, 3.10.12, 3.11.10, and 3.12.4.