CVE-2020-8795

CVE-2020-8795

EPSS 1.2%

In GitLab Enterprise Edition (EE) 12.5.0 through 12.7.5, sharing a group with a group could grant project access to unauthorized users.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://about.gitlab.com/releases/2020/02/13/critical-security-release-gitlab-12-dot-7-dot-6-released/https://about.gitlab.com/releases/categories/releases/