cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-4985,https://securityvulnerability.io/vulnerability/CVE-2024-4985,Authentication Bypass Vulnerability in GitHub Enterprise Server via SAML Single Sign-On,"An authentication bypass vulnerability exists in GitHub Enterprise Server when using SAML single sign-on with the optional encrypted assertions feature. This allows an attacker to forge a SAML response, gaining access to sensitive user privileges, including site administrator rights. Exploiting this vulnerability enables unauthorized entry into the server instance without prior authentication. All versions of GitHub Enterprise Server up to 3.13.0 are affected, with remediation available in versions 3.9.15, 3.10.12, 3.11.10, and 3.12.4 as detailed in the GitHub Bug Bounty program reports.",GitHub,,,,0.00044999999227002263,false,,true,true,true,2024-05-22T16:30:31.000Z,,true,false,,2024-05-20T22:15:00.000Z,9232