CVE-2024-2880 | GitLab Community Edition/Enterprise Edition up to 16.11.5/17.0.3/17.1.1 Group Member admin_group_member access control (Issue 451921)

Inserito da Angelo Barbosa | Lug 11, 2024 | CVE

A vulnerability was found in GitLab Community Edition and Enterprise Edition up to 16.11.5/17.0.3/17.1.1. It has been rated as problematic. Affected by this issue is the function admin_group_member of the component Group Member Handler. The manipulation leads to improper access controls.

This vulnerability is handled as CVE-2024-2880. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-2880 | GitLab Community Edition/Enterprise Edition up to 16.11.5/17.0.3/17.1.1 Group Member admin_group_member access control (Issue 451921)

Post correlati

CVE-2024-36397 | Vantiva MediaAccess DGA2232 prior 19.4-810 cross site scripting

CVE-2024-32532 | SiteGround Speed Optimizer Plugin up to 7.4.6 on WordPress authorization

CVE-2024-25519 | RuvarOA 6.01/12.01 wf_work_print.aspx idlist sql injection

CVE-2024-20037 | MediaTek MT8675 Pq memory corruption (ALPS08495937)