all InfoSec news
Critical SAML Auth Bypass Vulnerability Found in GitHub Enterprise Server
Heimdal Security Blog heimdalsecurity.com
An authentication bypass vulnerability of maximum severity (CVSS V4 Score: 10.0) tracked as CVE-2024-4985 was recently fixed by GitHub. The vulnerability impacts GitHub Enterprise Server (GHES) instances using SAML single sign-on (SSO) authentication. What to Know About the Vulnerability By taking advantage of the vulnerability, a threat actor might spoof a SAML response and obtain […]
The post Critical SAML Auth Bypass Vulnerability Found in GitHub Enterprise Server appeared first on Heimdal Security Blog.
actor auth authentication authentication bypass bypass bypass vulnerability critical cve cve-2024 cve-2024-4985 cvss cybersecurity news enterprise found github github enterprise server saml score server severity sign single single sign-on spoof sso threat threat actor vulnerability