CVE-2024-6685 | GitLab Community Edition/Enterprise Edition up to 17.1.6/17.2.4/17.3.1 Group Member authorization (Issue 472012)

Posted by Angelo Barbosa | Sep 17, 2024 | CVE

A vulnerability was found in GitLab Community Edition and Enterprise Edition up to 17.1.6/17.2.4/17.3.1. It has been classified as problematic. This affects an unknown part of the component Group Member Handler. The manipulation leads to authorization bypass.

This vulnerability is uniquely identified as CVE-2024-6685. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-6685 | GitLab Community Edition/Enterprise Edition up to 17.1.6/17.2.4/17.3.1 Group Member authorization (Issue 472012)

Related Posts

CVE-2024-29049 | Microsoft Edge prior 122.0.2365.120/123.0.2420.81 Webview2 unknown vulnerability

CVE-2023-46147 | Themify Ultra Plugin up to 7.3.5 on WordPress deserialization

CVE-2023-52472 | Linux Kernel up to 6.6.13/6.7.1 RSA mpi_alloc null pointer dereference (2831f4d3bfa6/95ad8b6879e2/d872ca165cb6)

CVE-2024-26930 | Linux Kernel up to 6.6.23/6.7.11/6.8.2/6.9-rc1 qla2xxx qla2x00_mem_alloc double free