{"uuid": "88ad32a7-8928-4e25-8b0c-db77983b34a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4985", "type": "seen", "source": "https://t.me/KomunitiSiber/1979", "content": "Critical GitHub Enterprise Server Flaw Allows Authentication Bypass\nhttps://thehackernews.com/2024/05/critical-github-enterprise-server-flaw.html\n\nGitHub has rolled out fixes to address a maximum severity flaw in the GitHub Enterprise Server (GHES) that could allow an attacker to bypass authentication protections.\nTracked as\u00a0CVE-2024-4985\u00a0(CVSS score: 10.0), the issue could permit unauthorized access to an instance without requiring prior authentication.\n\"On instances that use SAML single sign-on (SSO) authentication with the", "creation_timestamp": "2024-05-21T19:29:47.000000Z"}