CVE-2025-3509 — HIGH (7.2) — White Hats Nepal

Q: How severe is CVE-2025-3509?

CVE-2025-3509 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-3509?

Check the references section above for vendor advisories and patch information. Affected products include: Github Enterprise Server.

Vulnerability Description

A Remote Code Execution (RCE) vulnerability was identified in GitHub Enterprise Server that allowed attackers to execute arbitrary code by exploiting the pre-receive hook functionality, potentially leading to privilege escalation and system compromise. The vulnerability involves using dynamically allocated ports that become temporarily available, such as during a hot patch upgrade. This means the vulnerability is only exploitable during specific operational conditions, which limits the attack window. Exploitation required either site administrator permissions to enable and configure pre-receive hooks or a user with permissions to modify repositories containing pre-receive hooks where this functionality was already enabled. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.18 and was fixed in versions 3.17.1, 3.16.4, 3.15.8, 3.14.13, 3.13.16. This vulnerability was reported via the GitHub Bug Bounty program.

CVSS Score

7.2

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Github	Enterprise Server	< 3.13.16

Related Weaknesses (CWE)

CWE-94

References

https://docs.github.com/en/[email protected]/admin/release-notes#3.13.16Release Notes
https://docs.github.com/en/[email protected]/admin/release-notes#3.14.13Release Notes
https://docs.github.com/en/[email protected]/admin/release-notes#3.15.8Release Notes
https://docs.github.com/en/[email protected]/admin/release-notes#3.16.4Release Notes
https://docs.github.com/en/[email protected]/admin/release-notes#3.17.1Release Notes

FAQ

What is CVE-2025-3509?

CVE-2025-3509 is a vulnerability with a CVSS score of 7.2 (HIGH). A Remote Code Execution (RCE) vulnerability was identified in GitHub Enterprise Server that allowed attackers to execute arbitrary code by exploiting the pre-receive hook functionality, potentially le...

How severe is CVE-2025-3509?

CVE-2025-3509 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-3509?

Check the references section above for vendor advisories and patch information. Affected products include: Github Enterprise Server.