Critical Authentication Flaw Haunts GitHub Enterprise Server

August 21, 2024 at 12:54PM GitHub has issued a critical fix for security vulnerabilities found in its Enterprise Server product. One flaw, CVE-2024-6800, allows attackers to manipulate SAML SSO authentication to gain site administrator privileges, with a severity score of 9.5/10. The vulnerabilities affect versions prior to 3.14 and were fixed in subsequent releases. Two … Read more