← voltar
CVE-2023-4379

Incorrect Authorization in GitLab

CVSS 8.1 HIGHEPSS 0.5%CWE-863
An issue has been discovered in GitLab EE affecting all versions starting from 15.3 prior to 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to 16.4.1. Code owner approval was not removed from merge requests when the target branch was updated.
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:N
Produtos afetados
GitLab · GitLab

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://gitlab.com/gitlab-org/gitlab/-/issues/415496