CVE-2024-4024 | GitLab Community Edition/Enterprise Edition up to 16.9.5/16.10.3/16.11.0 Bitbucket Credentials improper authentication

Inserito da Angelo Barbosa | Apr 25, 2024 | CVE

A vulnerability was found in GitLab Community Edition and Enterprise Edition up to 16.9.5/16.10.3/16.11.0. It has been rated as critical. Affected by this issue is some unknown functionality of the component Bitbucket Credentials Handler. The manipulation leads to improper authentication.

This vulnerability is handled as CVE-2024-4024. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4024 | GitLab Community Edition/Enterprise Edition up to 16.9.5/16.10.3/16.11.0 Bitbucket Credentials improper authentication

Post correlati

CVE-2023-6700 | Cookie Information Plugin up to 2.0.22 on WordPress Options Update improper authentication

CVE-2023-7116 | WeiYe-Jing datax-web 2.1.2 HTTP POST Request /api/log/killJob processId os command injection

CVE-2024-5153 | Startklar Elementor Addons Plugin up to 1.7.15 on WordPress path traversal

CVE-2024-35198 | pytorch serve up to 0.10.x name resolution (GHSA-wxcx-gg9c-fwp2)