Missing authentication in all versions of GitLab CE/EE since version 7.11.0 allows an attacker with access to a victim's session to disable two-factor authentication
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitLab
Published: 2021-10-04T16:42:11
Updated: 2024-08-04T02:20:33.644Z
Reserved: 2021-08-23T00:00:00
Link: CVE-2021-39879
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-10-04T17:15:08.137
Modified: 2021-10-12T15:57:48.810
Link: CVE-2021-39879
Redhat
No data.