CVE-2023-4658 | GitLab Enterprise Edition prior 16.4.3/16.5.3/16.6.1 Allowed to Merge access control

Inserito da Angelo Barbosa | Dic 1, 2023 | CVE

A vulnerability was found in GitLab Enterprise Edition. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Allowed to Merge Handler. The manipulation leads to improper access controls.

This vulnerability is known as CVE-2023-4658. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-4658 | GitLab Enterprise Edition prior 16.4.3/16.5.3/16.6.1 Allowed to Merge access control

Post correlati

CVE-2024-0760 | ISC BIND 9 up to 9.18.27/9.18.27-S1/9.19.24 DNS Messages over TCP resource consumption

CVE-2024-21503 | psf black up to 24.2.x strings.py lines_with_leading_tabs_expanded redos

CVE-2024-2059 | SourceCodester Petrol Pump Management Software 1.0 service_crud.php photo unrestricted upload

CVE-2024-21146 | Oracle Trade Management up to 12.2.13 GL Accounts improper authorization