Lucene search
PRIOn knowledge basePRION:CVE-2023-5009HistorySep 19, 2023 - 8:16 a.m.
Design/Logic Flaw
2023-09-1908:16:00
PRIOn knowledge base
www.prio-n.com
7
gitlab ee
pipeline jobs
arbitrary user
scheduled security scan
bypass
cve-2023-3932
nvd
An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.2.7, all versions starting from 16.3 before 16.3.4. It was possible for an attacker to run pipeline jobs as an arbitrary user via scheduled security scan policies. This was a bypass of CVE-2023-3932 showing additional impact.
Related
debiancve
debiancve
CVE-2023-5009
2023-09-19 08:16:07
CVE-2023-3932
2023-08-03 05:15:10
osv
osv
BIT-gitlab-2023-5009
2024-03-06 10:57:56
CVE-2023-5009
2023-09-19 08:16:07
BIT-gitlab-2023-3932
2024-03-06 11:01:54
hivepro
hivepro
GitLab Releases Critical Patch to Address Pipeline Execution Vulnerability
2023-09-22 05:19:08
nessus
nessus
GitLab 13.12 < 16.2.7 / 16.3 < 16.3.4 (CVE-2023-5009)
2023-09-19 00:00:00
GitLab 13.12 < 16.0.8 / 16.1.0 < 16.1.3 / 16.2.0 < 16.2.2 (CVE-2023-3932)
2024-01-02 00:00:00
FreeBSD : Gitlab -- vulnerability (32a4896a-56da-11ee-9186-001b217b3468)
2023-09-19 00:00:00
cve
cve
CVE-2023-5009
2023-09-19 08:16:07
CVE-2023-3932
2023-08-03 05:15:10
cvelist
cvelist
CVE-2023-5009 Improper Access Control in GitLab
2023-09-19 07:01:14
CVE-2023-3932 Missing Authorization in GitLab
2023-08-03 04:01:58
nvd
nvd
CVE-2023-5009
2023-09-19 08:16:07
CVE-2023-3932
2023-08-03 05:15:10
thn
thn
GitLab Releases Urgent Security Patches for Critical Vulnerability
2023-09-20 07:18:00
prion
prion
Design/Logic Flaw
2023-08-03 05:15:00
redhatcve
redhatcve
CVE-2023-3932
2023-10-09 17:57:15