Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:50 a.m.5 views

CVE-2023-2485

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.1 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A malicious maintainer in a project can escalate other users to Owners in that project if they...

4.9CVSS6.5AI score0.00817EPSS
Exploits0References1
OSV
OSV
added 2023/06/07 5:15 p.m.4 views

UBUNTU-CVE-2023-2485

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.1 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A malicious maintainer in a project can escalate other users to Owners in that project if they...

4.9CVSS5.8AI score0.00817EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/06/07 12:0 a.m.8 views

CVE-2023-2485 Incorrect Privilege Assignment in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.1 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A malicious maintainer in a project can escalate other users to Owners in that project if they...

4.4CVSS6.5AI score0.00817EPSS
Exploits0References3
OSV
OSV
added 2023/06/07 12:0 a.m.18 views

CVE-2023-2485 Incorrect Privilege Assignment in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.1 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A malicious maintainer in a project can escalate other users to Owners in that project if they...

4.4CVSS5AI score0.00817EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/06/07 12:0 a.m.26 views

CVE-2023-2485 Incorrect Privilege Assignment in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.1 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A malicious maintainer in a project can escalate other users to Owners in that project if they...

4.4CVSS5.5AI score0.00817EPSS
Exploits0References3
CVE
CVE
added 2023/06/07 12:0 a.m.81 views

CVE-2023-2485

CVE-2023-2485 (GitLab CE/EE) affects GitLab versions 14.1–15.10.7, 15.11–15.11.6, and 16.0–16.0.1. A malicious maintainer can escalate other project members to Owners when importing members from a project where those users are Owners. Root cause and impact are consistently described across source...

4.9CVSS4.9AI score0.00817EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/06/05 12:0 a.m.110 views

GitLab 14.1 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-2485)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.1 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A...

4.9CVSS5.3AI score0.00817EPSS
Exploits0References4
Rows per page
Query Builder