CVE-2023-3907 | GitLab Enterprise Edition prior 16.4.4/16.5.4/16.6.2 Project Access Token privileges management (Issue 418878)

Posted by Angelo Barbosa | Dec 18, 2023 | CVE

A vulnerability classified as problematic has been found in GitLab Enterprise Edition. This affects an unknown part of the component Project Access Token Handler. The manipulation leads to improper privilege management.

This vulnerability is uniquely identified as CVE-2023-3907. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-3907 | GitLab Enterprise Edition prior 16.4.4/16.5.4/16.6.2 Project Access Token privileges management (Issue 418878)

Related Posts

CVE-2024-51327 | projectworlds Travel Management System 1.0 loginform.php username/password sql injection

CVE-2023-46262 | Ivanti Avalanche 6.4.1 server-side request forgery

CVE-2024-24122 | Wanxing Technology Yitu Project Project File exp.adpx denial of service

CVE-2024-0575 | Totolink LR1200GB 9.1.0u.6619_B20230130 /cgi-bin/cstecgi.cgi setTracerouteCfg command stack-based overflow