CVE-2023-6690

A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on transferred repositories by making a GraphQL mutation to alter repository permissions during the transfer. This vulnerability affected GitHub Enterprise Server version 3.8.0 and above and was fixed in version 3.8.12, 3.9.7, 3.10.4, and 3.11.1.

CVSS v3.0 2.0 LOW

2.0^/10

CVSS v3.0 : LOW

Vector :

Exploitability : 0.5 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required HIGH

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.12	Release Notes
https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.7	Release Notes
https://docs.github.com/en/enterprise-server@3.10/admin/release-notes#3.10.4	Release Notes
https://docs.github.com/en/enterprise-server@3.11/admin/release-notes#3.11.1	Release Notes

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:github:enterprise_server::::::::
	cpe:2.3:a:github:enterprise_server::::::::
	cpe:2.3:a:github:enterprise_server::::::::
	cpe:2.3:a:github:enterprise_server:3.11.0:::::::*

Information

Published : 2023-12-21 21:15

Updated : 2023-12-29 19:21

NVD link : CVE-2023-6690

Mitre link : CVE-2023-6690

JSON object : View

Products Affected

github

enterprise_server

CWE

CWE-367

Time-of-check Time-of-use (TOCTOU) Race Condition

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.12", "name": "https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.12", "tags": ["Release Notes"], "refsource": ""}, {"url": "https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.7", "name": "https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.7", "tags": ["Release Notes"], "refsource": ""}, {"url": "https://docs.github.com/en/enterprise-server@3.10/admin/release-notes#3.10.4", "name": "https://docs.github.com/en/enterprise-server@3.10/admin/release-notes#3.10.4", "tags": ["Release Notes"], "refsource": ""}, {"url": "https://docs.github.com/en/enterprise-server@3.11/admin/release-notes#3.11.1", "name": "https://docs.github.com/en/enterprise-server@3.11/admin/release-notes#3.11.1", "tags": ["Release Notes"], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on transferred repositories by making a GraphQL mutation to alter repository permissions during the transfer.\u00a0This vulnerability affected GitHub Enterprise Server version 3.8.0 and above and was fixed in version 3.8.12, 3.9.7, 3.10.4, and 3.11.1.\n"}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-367"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2023-6690", "ASSIGNER": "product-cna@github.com"}}, "impact": {"baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 2.0, "attackVector": "NETWORK", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 0.5}}, "publishedDate": "2023-12-21T21:15Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "3.10.4", "versionStartIncluding": "3.10.0"}, {"cpe23Uri": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "3.9.7", "versionStartIncluding": "3.9.0"}, {"cpe23Uri": "cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "3.8.12", "versionStartIncluding": "3.8.0"}, {"cpe23Uri": "cpe:2.3:a:github:enterprise_server:3.11.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2023-12-29T19:21Z"}