CVE-2024-0507

MEDIUM

GitHub Enterprise Server - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-0507. PoCs published by convisolabs.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2024-0200, leveraging unsafe reflection to leak the ENTERPRISE_SESSION_SECRET and achieve remote code execution via Marshal deserialization in GitHub Enterprise Server. The exploit requires organization owner privileges and authenticates using provided credentials.

Description

An attacker with access to a Management Console user account with the editor role could escalate privileges through a command injection vulnerability in the Management Console. This vulnerability affected all versions of GitHub Enterprise Server and was fixed in versions 3.11.3, 3.10.5, 3.9.8, and 3.8.13 This vulnerability was reported via the GitHub Bug Bounty program.

Exploits (1)

nomisec WORKING POC

by convisolabs · poc

https://github.com/convisolabs/CVE-2024-0507_CVE-2024-0200-github

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2024-0200, leveraging unsafe reflection to leak the ENTERPRISE_SESSION_SECRET and achieve remote code execution via Marshal deserialization in GitHub Enterprise Server. The exploit requires organization owner privileges and authenticates using provided credentials.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: GitHub Enterprise Server

Auth required

Prerequisites: Organization owner privileges · Valid credentials for authentication · Network access to the target GitHub Enterprise Server

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Core References

Release Notes

https://docs.github.com/en/[email protected]/admin/release-notes#3.10.5

Release Notes

https://docs.github.com/en/[email protected]/admin/release-notes#3.11.3

Release Notes

https://docs.github.com/en/[email protected]/admin/release-notes#3.8.13

Release Notes

https://docs.github.com/en/[email protected]/admin/release-notes#3.9.8

Scores

CVSS v3 6.5

EPSS 0.7288

EPSS Percentile 98.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-20 CWE-77

Status published

Products (1)

github/enterprise_server < 3.8.13

Published Jan 16, 2024

Tracked Since Feb 18, 2026