Authorization

2024-03-0701:15:00

PRIOn knowledge base

www.prio-n.com

vulnerability

gitlab

authorization bypass

codeowners

crafted payload

feature branch

malicious actions

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.5%

JSON

An authorization bypass vulnerability was discovered in GitLab affecting versions 11.3 prior to 16.7.7, 16.7.6 prior to 16.8.4, and 16.8.3 prior to 16.9.2. An attacker could bypass CODEOWNERS by utilizing a crafted payload in an old feature branch to perform malicious actions.