Lucene search
GitLabCVELIST:CVE-2024-5470HistoryJul 11, 2024 - 6:57 a.m.
CVE-2024-5470 Improper Access Control in GitLab
2024-07-1106:57:04
CWE-284
GitLab
www.cve.org
14
gitlab
access control
cve-2024-5470
admin permission
deploy tokens
CVSS3
3.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N
EPSS
0
Percentile
14.3%
An issue was discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.0.4 and from 17.1 prior to 17.1.2 where a Guest user with admin_push_rules permission may have been able to create project-level deploy tokens.
CNA Affected
[
{
"cpes": [
"cpe:2.3:a:gitlab:gitlab:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unaffected",
"product": "GitLab",
"repo": "git://[email protected]:gitlab-org/gitlab.git",
"vendor": "GitLab",
"versions": [
{
"lessThan": "17.0.4",
"status": "affected",
"version": "17.0",
"versionType": "semver"
},
{
"lessThan": "17.1.2",
"status": "affected",
"version": "17.1",
"versionType": "semver"
}
]
}
]Related
debiancve
debiancve
CVE-2024-5470
2024-07-11 07:15:04
ubuntucve
ubuntucve
CVE-2024-5470
2024-07-11 00:00:00
nessus
nessus
GitLab 17.0 < 17.0.4 / 17.1 < 17.1.2 (CVE-2024-5470)
2024-07-11 00:00:00
FreeBSD : Gitlab -- vulnerabilities (acb4eab6-3f6d-11ef-8657-001b217b3468)
2024-07-11 00:00:00
cve
cve
CVE-2024-5470
2024-07-11 07:15:04
vulnrichment
vulnrichment
CVE-2024-5470 Improper Access Control in GitLab
2024-07-11 06:57:04
osv
osv
BIT-gitlab-2024-5470
2024-07-13 07:19:23
CVE-2024-5470
2024-07-11 07:15:04
nvd
nvd
CVE-2024-5470
2024-07-11 07:15:04
freebsd
freebsd
Gitlab -- vulnerabilities
2024-07-10 00:00:00
CVSS3
3.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N
EPSS
0
Percentile
14.3%
Related for CVELIST:CVE-2024-5470