Security Advisory

CVE-2023-6690

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-12-21 20:45:19

Last updated 2024-08-02 08:35:14

Assigner GitHub_P

State PUBLISHED

Description

A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on transferred repositories by making a GraphQL mutation to alter repository permissions during the transfer. This vulnerability affected GitHub Enterprise Server version 3.8.0 and above and was fixed in version 3.8.12, 3.9.7, 3.10.4, and 3.11.1.

← Browse all CVEs View on cve.org ↗