CVE-2025-6981 – GitHub Enterprise Server Unauthorized Read Access Vulnerability

July 16, 2025

CVE ID : CVE-2025-6981

Published : July 15, 2025, 9:15 p.m. | 5 hours, 38 minutes ago

Description : An incorrect authorization vulnerability allowed unauthorized read access to the contents of internal repositories for contractor accounts when the Contractors API feature was enabled. The Contractors API is a rarely-enabled feature in private preview. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.18 and was fixed in versions 3.14.15, 3.15.10, 3.16.6 and 3.17.3

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleApache Tomcat Coyote Vulnerability Let Attackers Trigger DoS Attack

Next Article CVE-2025-53906 – Vim Zip File Path Traversal Vulnerability

Slack’s AI search now works across an organization’s entire knowledge base

In-House vs Outsourcing for React.js Development: Understand What Is Best for Your Enterprise

Tiny Screens, Big Impact: The Forgotten Art Of Developing Web Apps For Feature Phones

Kong AI Gateway 3.11 introduces new method for reducing token costs

Microsoft is on track to become the second $4 trillion company by market cap, following NVIDIA — and mass layoffs

The wireless gaming mouse I’ve used for 5 years is down to $30 — that’s less than 2 cents a day (and it’s still my favorite)

Researchers from OpenAI, Anthropic, Meta, and Google issue joint AI safety warning – here’s why

You’ll soon be able to chat with Copilot and attend Teams meetings while driving your Mercedes-Benz — now there’s no excuse to miss your meetings

The details of TC39’s last meeting

The details of TC39’s last meeting

Tinkerwell v5 is now released

Tinkerwell v5 is now released

Microsoft is on track to become the second $4 trillion company by market cap, following NVIDIA — and mass layoffs

Microsoft is on track to become the second $4 trillion company by market cap, following NVIDIA — and mass layoffs

The wireless gaming mouse I’ve used for 5 years is down to $30 — that’s less than 2 cents a day (and it’s still my favorite)

You’ll soon be able to chat with Copilot and attend Teams meetings while driving your Mercedes-Benz — now there’s no excuse to miss your meetings

CVE-2025-6981 – GitHub Enterprise Server Unauthorized Read Access Vulnerability

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

Building networks of data science talent

How to Budget Smartly for Your First AI Project: A Step-by-Step Guide💡

CVE-2025-6583 – SourceCodester Best Salon Management System SQL Injection Vulnerability

CVE-2025-6644 – PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability

CVE-2025-47864 – Apache HTTP Server XML Entity Injection Vulnerability

CVE-2025-30173 – Aspect Server-Side Request Forgery (SSRF) Vulnerability

CVE-2025-49125 – Apache Tomcat PreResources/PostResources Path Bypass

Orbital Mechanics (or How I Optimized a CSS Keyframes Animation)

CVE-2025-6981 – GitHub Enterprise Server Unauthorized Read Access Vulnerability

Related Posts