← Back to home
wid-sec-w-2026-2164  ·  Published 2026-06-30  ·  View on BSI CERT-Bund ↗

Microsoft GitHub Enterprise Server: Multiple Vulnerabilities

CVSS N/A NONE

Risk Summary

Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Microsoft GitHub Enterprise Server ausnutzen, um einen Cross-Site Scripting Angriff durchzuführen, Sicherheitsmaßnahmen zu umgehen und vertrauliche Informationen offenzulegen.

Affected Vendors

Microsoft

Affected Products (10)

Microsoft · GitHub Enterprise Server <3.17.17
Microsoft · GitHub Enterprise Server 3.17.17
Microsoft · GitHub Enterprise Server <3.18.11
Microsoft · GitHub Enterprise Server 3.18.11
Microsoft · GitHub Enterprise Server <3.19.8
Microsoft · GitHub Enterprise Server 3.19.8
Microsoft · GitHub Enterprise Server <3.21.2
Microsoft · GitHub Enterprise Server 3.21.2
Microsoft · GitHub Enterprise Server <3.20.4
Microsoft · GitHub Enterprise Server 3.20.4

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more