June 4, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
SAP Security Update, 19 Vulnerabilities Patched Across Multiple Products
February 11, 2025
MassLogger Malware – Active IOCs
February 11, 2025
SAP Security Update, 19 Vulnerabilities Patched Across Multiple Products
February 11, 2025
MassLogger Malware – Active IOCs
February 11, 2025
Severity
Medium
Analysis Summary
CVE-2025-23040 CVSS:6.6
GitHub Desktop could allow a local authenticated attacker to obtain credentials information, caused by improper transmission of OAuth token or credentials for other Git remote hosts to an unrelated host.
CVE-2025-23369 CVSS:6.4
GitHub Enterprise Server could allow a remote authenticated attacker to forge a SAML response to provision and/or gain access to an account with administrator privileges, caused by improper validation of cryptographic signature
CVE-2024-8810 CVSS:7.2
GitHub Enterprise Server could allow a remote authenticated attacker to gain elevated privileges on the system, caused by a privilege management vulnerability. By using a specially crafted GitHub App, an attacker could exploit this vulnerability to escalate privileges.
Impact
- Privilege Escalation
- Information Disclosure
- Security Bypass
Indicators of Compromise
CVE
CVE-2025-23040
CVE-2025-23369
CVE-2024-8810
Affected Vendors
GitHUB
Affected Products
- GitHub Desktop GitHub Desktop - 3.3.15
- GitHub Desktop GitHub Desktop - 3.4.11
- GitHub Enterprise Server - 3.12.0
- GitHub Enterprise Server - 3.12.13
- GitHub Enterprise Server - 3.13.0
- GitHub Enterprise Server - 3.13.9
Remediation
Upgrade to the latest version of GitHub, available from the GitHub Repository.
