CVE-2026-3306 | GitHub Enterprise Server up to 3.19.2 Pull Request authorization

A vulnerability was found in GitHub Enterprise Server up to 3.19.2. It has been declared as problematic. Affected is an unknown function of the component Pull Request Handler. The manipulation results in authorization bypass.

This vulnerability was named CVE-2026-3306. The attack may be performed from remote. There is no available exploit.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More