CVE-2023-7045 | GitLab Community Edition/Enterprise Edition up to 16.10.5/16.11.2/17.0.0 Kubernetes Agent Server cross-site request forgery (Issue 436358)

Posted by Angelo Barbosa | May 23, 2024 | CVE

A vulnerability was found in GitLab Community Edition and Enterprise Edition up to 16.10.5/16.11.2/17.0.0. It has been declared as problematic. This vulnerability affects unknown code of the component Kubernetes Agent Server. The manipulation leads to cross-site request forgery.

This vulnerability was named CVE-2023-7045. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-7045 | GitLab Community Edition/Enterprise Edition up to 16.10.5/16.11.2/17.0.0 Kubernetes Agent Server cross-site request forgery (Issue 436358)

Related Posts

CVE-2022-48769 | Linux Kernel up to 5.10.95/5.15.18/5.16.4 efi QueryVariableInfo denial of service

CVE-2024-2071 | SourceCodester FAQ Management System 1.0 Update FAQ Frequently Asked Question cross site scripting

CVE-2024-30442 | BoldThemes Bold Page Builder Plugin up to 4.8.0 on WordPress cross site scripting

CVE-2024-41862 | Adobe Substance3D Sampler up to 4.5 out-of-bounds (apsb24-65)