An issue has been discovered in GitLab affecting all versions before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions starting from 16.9 before 16.9.1. It was possible for group members with sub-maintainer role to change the title of privately accessible deploy keys associated with projects in the group.
Metrics
Affected Vendors & Products
References
History
Thu, 19 Sep 2024 02:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: GitLab
Published: 2024-02-21T22:57:15.488Z
Updated: 2024-09-18T04:05:10.193Z
Reserved: 2023-07-04T18:18:03.684Z
Link: CVE-2023-3509
Vulnrichment
Updated: 2024-08-02T06:55:03.388Z
NVD
Status : Analyzed
Published: 2024-02-21T23:15:08.223
Modified: 2024-03-04T20:59:58.357
Link: CVE-2023-3509
Redhat
No data.