{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-29T06:35:16.502","vulnerabilities":[{"cve":{"id":"CVE-2023-51380","sourceIdentifier":"product-cna@github.com","published":"2023-12-21T21:15:13.757","lastModified":"2024-12-16T19:07:20.613","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"An incorrect authorization vulnerability was identified in GitHub Enterprise Server that allowed issue comments to be read with an improperly scoped token. This vulnerability affected all versions of GitHub Enterprise Server since 3.7 and was fixed in version 3.7.19, 3.8.12, 3.9.7, 3.10.4, and 3.11.1."},{"lang":"es","value":"Se identificó una vulnerabilidad de autorización incorrecta en GitHub Enterprise Server que permitía leer los comentarios del problema con un token con un alcance incorrecto. Esta vulnerabilidad afectó a todas las versiones de GitHub Enterprise Server desde la 3.7 y se solucionó en las versiones 3.17.19, 3.8.12, 3.9.7, 3.10.4 y 3.11.1."}],"metrics":{"cvssMetricV31":[{"source":"product-cna@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N","baseScore":2.7,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"product-cna@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-863"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-863"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*","versionStartIncluding":"3.7.0","versionEndExcluding":"3.7.19","matchCriteriaId":"9C219467-E463-4C59-AAD7-8BECDA8AA1AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*","versionStartIncluding":"3.8.0","versionEndExcluding":"3.8.12","matchCriteriaId":"B3D983FF-FDDE-484C-AA34-31EB52E25EC2"},{"vulnerable":true,"criteria":"cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*","versionStartIncluding":"3.9.0","versionEndExcluding":"3.9.7","matchCriteriaId":"B118EB53-4459-4817-8F74-002DBA4860DA"},{"vulnerable":true,"criteria":"cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*","versionStartIncluding":"3.10.0","versionEndExcluding":"3.10.4","matchCriteriaId":"F65FB74F-11AB-439B-9CF0-9F08E03E4083"},{"vulnerable":true,"criteria":"cpe:2.3:a:github:enterprise_server:3.11.0:*:*:*:*:*:*:*","matchCriteriaId":"AC723276-C3EE-4F79-857A-3A5C078C33E2"}]}]}],"references":[{"url":"https://docs.github.com/en/enterprise-server@3.10/admin/release-notes#3.10.4","source":"product-cna@github.com","tags":["Release Notes"]},{"url":"https://docs.github.com/en/enterprise-server@3.11/admin/release-notes#3.11.1","source":"product-cna@github.com","tags":["Release Notes"]},{"url":"https://docs.github.com/en/enterprise-server@3.7/admin/release-notes#3.7.19","source":"product-cna@github.com","tags":["Release Notes"]},{"url":"https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.12","source":"product-cna@github.com","tags":["Release Notes"]},{"url":"https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.7","source":"product-cna@github.com","tags":["Release Notes"]},{"url":"https://docs.github.com/en/enterprise-server@3.10/admin/release-notes#3.10.4","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes"]},{"url":"https://docs.github.com/en/enterprise-server@3.11/admin/release-notes#3.11.1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes"]},{"url":"https://docs.github.com/en/enterprise-server@3.7/admin/release-notes#3.7.19","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes"]},{"url":"https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.12","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes"]},{"url":"https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.7","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Release Notes"]}]}}]}