{"uuid": "d6b987f1-cbe5-41f5-9b28-dbb7c0f6640d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-9487", "type": "seen", "source": "https://t.me/KomunitiSiber/2724", "content": "GitHub Patches Critical Flaw in Enterprise Server Allowing Unauthorized Instance Access\nhttps://thehackernews.com/2024/10/github-patches-critical-flaw-in.html\n\nGitHub has released security updates for Enterprise Server (GHES) to address multiple issues, including a critical bug that could allow unauthorized access to an instance.\nThe vulnerability, tracked as CVE-2024-9487, carries a CVS score of 9.5 out of a maximum of 10.0\n\"An attacker could bypass SAML single sign-on (SSO) authentication with the optional encrypted assertions feature, allowing", "creation_timestamp": "2024-10-16T11:53:06.000000Z"}