8 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-4340
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The impersonate feature in Gitlab 8.7.0, 8.6.0 through 8.6.7, 8.5.0 through 8.5.11, 8.4.0 through 8.4.9, 8.3.0 through 8.3.8, and 8.2.0 through 8.2.4 allows...
CVE-2016-4340
CVE-2016-4340 affects GitLab Community Edition and related releases (versions 8.2.0–8.2.4, 8.3.0–8.3.8, 8.4.0–8.4.9, 8.5.0–8.5.11, 8.6.0–8.6.7, 8.7.0) where the impersonate feature allows remote authenticated users to log in as any other user via unspecified vectors. This is an elevation of privi...
CVE-2016-4340
Removed by vendor...
GitLab Impersonate Privilege Escalation
Exploit Title: GitLab privilege escalation via "impersonate" feature Date: 02-05-2016 Software Link: https://about.gitlab.com/ Version: 8.2.0 - 8.2.4, 8.3.0 - 8.3.8, 8.4.0 - 8.4.9, 8.5.0 - 8.5.11, 8.6.0 - 8.6.7, 8.7.0 Exploit Author: Kaimi Website: https://kaimi.ru CVE: CVE-2016-4340 Category:...
GitLab - 'impersonate' Feature Privilege Escalation
Exploit for ruby platform in category web applications Exploit Title: GitLab privilege escalation via "impersonate" feature Date: 02-05-2016 Software Link: https://about.gitlab.com/ Version: 8.2.0 - 8.2.4, 8.3.0 - 8.3.8, 8.4.0 - 8.4.9, 8.5.0 - 8.5.11, 8.6.0 - 8.6.7, 8.7.0 Exploit Author: Kaimi...
GitLab - 'impersonate' Feature Privilege Escalation
Exploit Title: GitLab privilege escalation via "impersonate" feature Date: 02-05-2016 Software Link: https://about.gitlab.com/ Version: 8.2.0 - 8.2.4, 8.3.0 - 8.3.8, 8.4.0 - 8.4.9, 8.5.0 - 8.5.11, 8.6.0 - 8.6.7, 8.7.0 Exploit Author: Kaimi Website: https://kaimi.ru CVE: CVE-2016-4340 Category:...
GitLab - impersonate Feature Privilege Escalation
GitLab - impersonate Feature Privilege Escalation Exploit Title: GitLab privilege escalation via "impersonate" feature Date: 02-05-2016 Software Link: https://about.gitlab.com/ Version: 8.2.0 - 8.2.4, 8.3.0 - 8.3.8, 8.4.0 - 8.4.9, 8.5.0 - 8.5.11, 8.6.0 - 8.6.7, 8.7.0 Exploit Author: Kaimi Website...
FreeBSD : gitlab -- privilege escalation via 'impersonate' feature (be72e773-1131-11e6-94fa-002590263bf5)
GitLab reports : During an internal code review, we discovered a critical security flaw in the 'impersonate' feature of GitLab. Added in GitLab 8.2, this feature was intended to allow an administrator to simulate being logged in as any other user. A part of this feature was not properly secured a...