CNNVD-202507-2087 Information

Jul 15, 2025 cve

CNNVD ID

CNNVD-202507-2087

CVE-2025-6981

CNNVD Published: 2025-07-15

Description (Chinese)

GitHub Enterprise Server是美国GitHub开源的一个应用软件。提供一个将自己的GitHub实例设置为虚拟设备，从而提供可扩展，易于管理的平台。 GitHub Enterprise Server 3.18之前版本存在安全漏洞，该漏洞源于授权不当，可能导致未经授权读取内部仓库内容。

Description (English)

GitHub Enterprise Server is an application from GitHub Open Source, United States. Provide an extended and easily managed platform by setting up its GitHub example as a virtual device. There was a security loophole in the previous version of GitHub Enterprise Server 3.18, which stemmed from improper authorization and could lead to unauthorized access to the contents of the internal warehouse.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

GitHub Desktop

Published

2025-07-15

Last Modified

2026-02-24

References

https://docs.github.com/en/enterprise-server@3.16/admin/release-notes#3.16.6 https://docs.github.com/en/enterprise-server@3.17/admin/release-notes#3.17.3 https://docs.github.com/en/enterprise-server@3.14/admin/release-notes#3.14.15 https://docs.github.com/en/enterprise-server@3.15/admin/release-notes#3.15.10 https://nvd.nist.gov/vuln/detail/CVE-2025-6981

Patch

https://enterprise.github.com/releases/

Share on: