Vulnerability Description
An improper authorization vulnerability was identified in GitHub Enterprise Server that allowed a user with read access to a repository and write access to a project to modify issue and pull request metadata through the project. When adding an item to a project that already existed, column value updates were applied without verifying the actor's repository write permissions. This vulnerability was reported via the GitHub Bug Bounty program and has been fixed in GitHub Enterprise Server versions 3.14.24, 3.15.19, 3.16.15, 3.17.12, 3.18.6 and 3.19.3.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Github | Enterprise Server | < 3.14.24 |
Related Weaknesses (CWE)
References
- https://docs.github.com/en/[email protected]/admin/release-notes#3.14.24Release Notes
- https://docs.github.com/en/[email protected]/admin/release-notes#3.15.19Release Notes
- https://docs.github.com/en/[email protected]/admin/release-notes#3.16.15Release Notes
- https://docs.github.com/en/[email protected]/admin/release-notes#3.17.12Release Notes
- https://docs.github.com/en/[email protected]/admin/release-notes#3.18.6Release Notes
- https://docs.github.com/en/[email protected]/admin/release-notes#3.19.3Release Notes
FAQ
What is CVE-2026-3306?
CVE-2026-3306 is a vulnerability with a CVSS score of 4.3 (MEDIUM). An improper authorization vulnerability was identified in GitHub Enterprise Server that allowed a user with read access to a repository and write access to a project to modify issue and pull request m...
How severe is CVE-2026-3306?
CVE-2026-3306 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-3306?
Check the references section above for vendor advisories and patch information. Affected products include: Github Enterprise Server.