CVE-2025-6600

An exposure of sensitive information vulnerability was identified in GitHub Enterprise Server that could allow an attacker to disclose the names of private repositories within an organization. This issue could be exploited by leveraging a user-to-server token with no scopes via the Search API endpoint. Successful exploitation required an organization administrator to install a malicious GitHub App in the organization’s repositories. This vulnerability impacted only GitHub Enterprise Server version 3.17 and was addressed in version 3.17.2. The vulnerability was reported through the GitHub Bug Bounty program.

CVSS v3 4.3 MEDIUM

4.3^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://docs.github.com/en/enterprise-server@3.17/admin/release-notes#3.17.2	Release Notes

Configurations

Configuration 1 (hide)

cpe:2.3:a:github:enterprise_server:*:*:*:*:*:*:*:*

History

05 Sep 2025, 14:59

Type	Values Removed	Values Added
First Time		Github Github enterprise Server
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 4.3
CPE		cpe:2.3:a:github:enterprise_server::::::::
References	~~() https://docs.github.com/en/enterprise-server@3.17/admin/release-notes#3.17.2 -~~	() https://docs.github.com/en/enterprise-server@3.17/admin/release-notes#3.17.2 - Release Notes

03 Jul 2025, 15:14

Type	Values Removed	Values Added
Summary		(es) Se identificó una vulnerabilidad de exposición de información confidencial en GitHub Enterprise Server que podría permitir a un atacante divulgar los nombres de repositorios privados dentro de una organización. Este problema podría explotarse mediante un token de usuario a servidor sin alcances a través del endpoint de la API de búsqueda. Para explotarlo con éxito, el administrador de la organización tuvo que instalar una aplicación maliciosa de GitHub en los repositorios de la organización. Esta vulnerabilidad afectó únicamente a la versión 3.17 de GitHub Enterprise Server y se solucionó en la versión 3.17.2. La vulnerabilidad se reportó a través del programa de recompensas por errores de GitHub.

01 Jul 2025, 19:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-07-01 19:15

Updated : 2025-09-05 14:59

NVD link : CVE-2025-6600

Mitre link : CVE-2025-6600

CVE.ORG link : CVE-2025-6600

JSON object : View

Products Affected

github

enterprise_server

CWE

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

4.3 /10