CVE-2024-8116 | GitLab Community Edition/Enterprise Edition up to 17.4.5/17.5.3/17.6.1 GraphQL Query authorization (Issue 480509)

Posted by Angelo Barbosa | Dec 16, 2024 | CVE

A vulnerability was found in GitLab Community Edition and Enterprise Edition up to 17.4.5/17.5.3/17.6.1. It has been classified as problematic. This affects an unknown part of the component GraphQL Query Handler. The manipulation leads to incorrect authorization.

This vulnerability is uniquely identified as CVE-2024-8116. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-8116 | GitLab Community Edition/Enterprise Edition up to 17.4.5/17.5.3/17.6.1 GraphQL Query authorization (Issue 480509)

Related Posts

CVE-2024-2730 | Mautic up to 4.4.9 Landing Page direct request

CVE-2020-12487 | Vivo ABE Versions earlier than 4.4.0.9 Command input validation

CVE-2024-2815 | Tenda AC15 15.03.20_multi Cookie /goform/execCommand R7WebsSecurityHandler password stack-based overflow

CVE-2023-6592 | FastDup Plugin up to 2.1.9 on WordPress file information disclosure