An issue has been discovered in GitLab affecting all versions starting from 10.0 before 16.1.5, all versions starting from 16.2 before 16.2.5, all versions starting from 16.3 before 16.3.1. Due to improper permission validation it was possible to edit labels description by an unauthorised user.
Metrics
Affected Vendors & Products
References
History
Thu, 19 Sep 2024 02:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 29 Aug 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:* |
MITRE
Status: PUBLISHED
Assigner: GitLab
Published: 2023-09-01T10:01:51.685Z
Updated: 2024-09-18T04:03:10.181Z
Reserved: 2023-01-09T14:16:54.573Z
Link: CVE-2023-0120
Vulnrichment
Updated: 2024-08-02T05:02:43.687Z
NVD
Status : Analyzed
Published: 2023-09-01T11:15:40.287
Modified: 2023-09-07T17:27:27.283
Link: CVE-2023-0120
Redhat
No data.