CVE-2024-1525 | GitLab Community Edition/Enterprise Edition up to 16.7.5/16.8.2/16.9.0 Secondary Email access control (Issue 438144)

Inserito da Angelo Barbosa | Feb 22, 2024 | CVE

A vulnerability, which was classified as critical, has been found in GitLab Community Edition and Enterprise Edition up to 16.7.5/16.8.2/16.9.0. This issue affects some unknown processing of the component Secondary Email Handler. The manipulation leads to improper access controls.

The identification of this vulnerability is CVE-2024-1525. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-1525 | GitLab Community Edition/Enterprise Edition up to 16.7.5/16.8.2/16.9.0 Secondary Email access control (Issue 438144)

Post correlati

CVE-2024-43801 | Jellyfin up to 10.9.9 SVG File information disclosure

CVE-2023-43817 | Delta Electronics DOPSoft up to 2.00.07.04 DPS File wMailContentLen buffer overflow

CVE-2024-2050 | Schneider Electric Easergy T200 cross site scripting (SEVD-2024-072-01)

CVE-2024-6083 | PHPVibe 11.0.46 Media Upload Page upload-mp3.php file unrestricted upload