CVE-2024-8970 | GitLab Community Edition/Enterprise Edition up to 17.2.8/17.3.4/17.4.1 Pipeline authorization (Issue 490916)

Inserito da Angelo Barbosa | Ott 11, 2024 | CVE

A vulnerability was found in GitLab Community Edition and Enterprise Edition up to 17.2.8/17.3.4/17.4.1 and classified as problematic. Affected by this issue is some unknown functionality of the component Pipeline Handler. The manipulation leads to incorrect authorization.

This vulnerability is handled as CVE-2024-8970. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-8970 | GitLab Community Edition/Enterprise Edition up to 17.2.8/17.3.4/17.4.1 Pipeline authorization (Issue 490916)

Post correlati

CVE-2024-36783 | Totolink LR350 9.3.5u.6369_B20220309 NTPSyncWithHost host_time command injection

CVE-2022-42539 | Google Android information disclosure

CVE-2024-7145 | JetElements Plugin up to 2.6.20 on WordPress file inclusion

CVE-2024-4341 | ExtremePacs Extreme XDS up to 3927 privileges management