CVE-2024-2469

CVSS 3.1 Score 9.6 of 10 (high)

Details

Published Mar 20, 2024

Updated: Mar 21, 2024

CWE ID 20

Summary

CVE-2024-2469 is a critical vulnerability in GitHub Enterprise Server that allows an attacker with Administrator privileges to execute remote SSH commands as root, gaining unauthorized access and potentially compromising the entire system. This issue affected versions 3.8.0 and above, and was reported through the GitHub Bug Bounty program. The vulnerability was remediated in versions 3.8.17, 3.9.12, 3.10.9, 3.11.7, and 3.12.1.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uS8_-s
https://www.cve.org/CVERecord?id=CVE-2024-2469
https://nvd.nist.gov/vuln/detail/CVE-2024-2469

Back to Vulnerability Database

CVE-2024-2469

CVSS 3.1 Score 9.6 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations