Wiz PoC. No publicly known exploits. Claimed they used AI to discover it.

>any authenticated user could execute arbitrary commands on GitHub's backend servers with a single git pushcommand - using nothing but a standard git client.

>GitHub Enterprise Server customers should upgrade immediately - at the time of this writing, our data indicates that 88% of instances are still vulnerable.

https://www.wiz.io/blog/github-rce-vulnerability-cve-2026-3854