CVE-2021-22864

HIGH

GitHub Enterprise Server 2.21.0-2.21.16 - Authenticated Remote Code Execution via GitHub Pages Configuration

Title source: llm

Description

A remote code execution vulnerability was identified in GitHub Enterprise Server that could be exploited when building a GitHub Pages site. User-controlled configuration options used by GitHub Pages were not sufficiently restricted and made it possible to override environment variables leading to code execution on the GitHub Enterprise Server instance. To exploit this vulnerability, an attacker would need permission to create and build a GitHub Pages site on the GitHub Enterprise Server instance. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.0.3 and was fixed in 3.0.3, 2.22.9, and 2.21.17. This vulnerability was reported via the GitHub Bug Bounty program.

References (3)

Core 3

Core References

Various Sources x_refsource_misc

https://docs.github.com/en/enterprise-server%402.21/admin/release-notes#2.21.17

Various Sources x_refsource_misc

https://docs.github.com/en/enterprise-server%402.22/admin/release-notes#2.22.9

Various Sources x_refsource_misc

https://docs.github.com/en/enterprise-server%403.0/admin/release-notes#3.0.3

Scores

CVSS v3 8.8

EPSS 0.0246

EPSS Percentile 82.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-77

Status published

Products (1)

github/enterprise_server 2.21.0 - 2.21.17

Published Mar 23, 2021

Tracked Since Feb 18, 2026