An issue has been discovered in GitLab CE/EE affecting all versions starting before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2, which leads to developers being able to create pipeline schedules on protected branches even if they don't have access to merge
Metrics
Affected Vendors & Products
References
History
Wed, 18 Sep 2024 20:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 29 Aug 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:* |
MITRE
Status: PUBLISHED
Assigner: GitLab
Published: 2023-08-02T08:30:58.187Z
Updated: 2024-09-18T04:03:45.203Z
Reserved: 2023-04-13T11:20:22.336Z
Link: CVE-2023-2022
Vulnrichment
Updated: 2024-08-02T06:12:19.529Z
NVD
Status : Analyzed
Published: 2023-08-02T09:15:13.877
Modified: 2023-08-05T03:45:46.463
Link: CVE-2023-2022
Redhat
No data.