<ul><li>GitHub addressed a critical vulnerability, CVE-2024-9487, in its Enterprise Server.</li><li>The vulnerability allowed unauthorized access to affected instances by exploiting a cryptographic signature verification flaw.</li><li>To exploit the vulnerability, the attacker required direct network access and a signed SAML response or metadata document.</li><li>GitHub also addressed an information disclosure vulnerability, CVE-2024-9539, in Enterprise Server.</li></ul>

GitHub addressed a critical vulnerability in Enterprise Server

Discover more