Serial number: AV25-737
Date: November 12, 2025
On November 10, 2025, GitHub published a security advisory to address vulnerabilities in the following products:
- GitHub Enterprise Server – versions 3.18.x prior to 3.18.1
- GitHub Enterprise Server – versions 3.17.x prior to 3.17.7
- GitHub Enterprise Server – versions 3.16.x prior to 3.16.10
- GitHub Enterprise Server – versions 3.15.x prior to 3.15.14
- GitHub Enterprise Server – versions 3.14.x prior to 3.14.19
Open-source reporting indicates that CVE-2025-11892 may have been exploited.
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.